QID 91883

Date Published: 2022-04-13

QID 91883: Microsoft Windows Hyper-V Shared Virtual Hard Disks Information Disclosure Vulnerability

Microsoft Hyper-V its release as Windows Server Virtualization, is a native hypervisor.it can create virtual machines on x86-64 systems running Windows.

CVE-2022-26785 - Windows Hyper-V Shared Virtual Hard Disks Information Disclosure Vulnerability.

CVE-2022-24539 - Windows Hyper-V Shared Virtual Hard Disks Information Disclosure Vulnerability.

CVE-2022-24490 - Windows Hyper-V Shared Virtual Hard Disks Information Disclosure Vulnerability.
CVE-2022-26783 - Windows Hyper-V Shared Virtual Hard Disks Information Disclosure Vulnerability.

Microsoft releases the security update for Windows October 2021

The KB Articles associated with the update:
KB5012596
KB5012647
KB5012604
KB5012599

This QID checks for the file version of ntoskrnl.exe

This QID check for Hyper-V service

The following versions of ntoskrnl.exe with their corresponding KBs are verified:
KB5012596-10.0.14393.5066
KB5012647-10.0.17763.2803
KB5012604-10.0.20348.643
KB5012599-10.0.19042.1645

Successfully exploited this vulnerability is the contents of Kernel memory. An attacker could read the contents of Kernel memory from a user mode process.

  • CVSS V3 rated as Critical - 8.1 severity.
  • CVSS V2 rated as Medium - 5 severity.
    • Solution
    Please refer to theKB5012596
    KB5012647
    ,KB5012604
    And KB5012599
    Vendor References

    CVEs related to QID 91883

    CVE-2022-26785 | CVE-2022-24539 | CVE-2022-24490 | CVE-2022-26783 |
    Software Advisories
    Advisory ID Software Component Link
    KB5012596 URL Logo support.microsoft.com/en-in/help/5012596
    KB5012599 URL Logo support.microsoft.com/en-in/help/5012599
    KB5012604 URL Logo support.microsoft.com/en-in/help/5012604
    KB5012647 URL Logo support.microsoft.com/en-in/help/5012647
    By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].