QID 91945
Date Published: 2022-09-14
QID 91945: Microsoft Azure Stack Hub Security Updates for September 2022
Azure Stack Hub is an extension of Azure that provides a way to run apps in an on-premises environment and deliver Azure services in your datacenter.
A complete Qualys vulnerability scan report for Microsoft Azure Stack Hub can be obtained at Azure Stack Vulnerability Scan Report.
QID Detection Logic (Authenticated):
This QID checks for the file version of ntoskrnl.exe, if this file version is less than 10.0.17763.10964, it is considered as vulnerable.
Successful exploitation of these vulnerabilities might allow an attacker to perform Information Disclosure, Elevation of Privileges, Security Feature Bypass, Remote Code Execution, and Denial of Service attacks.
Solution
Customers are encouraged to connect with Microsoft for obtaining more information about patches and upcoming releases.
Vendor References
CVEs related to QID 91945
CVE-2022-26928 | CVE-2022-30170 | CVE-2022-30196 | CVE-2022-30200 | CVE-2022-33647 | CVE-2022-33679 | CVE-2022-34718 | CVE-2022-34719 | CVE-2022-34720 | CVE-2022-34721 | CVE-2022-34722 | CVE-2022-34724 | CVE-2022-34725 | CVE-2022-34726 | CVE-2022-34727 | CVE-2022-34728 | CVE-2022-34729 | CVE-2022-34730 | CVE-2022-34731 | CVE-2022-34732 | CVE-2022-34733 | CVE-2022-34734 | CVE-2022-35803 | CVE-2022-35830 | CVE-2022-35831 | CVE-2022-35832 | CVE-2022-35833 | CVE-2022-35834 | CVE-2022-35835 | CVE-2022-35836 | CVE-2022-35837 | CVE-2022-35840 | CVE-2022-35841 | CVE-2022-37954 | CVE-2022-37955 | CVE-2022-37956 | CVE-2022-37957 | CVE-2022-37958 | CVE-2022-37959 | CVE-2022-37969 | CVE-2022-38004 | CVE-2022-38005 | CVE-2022-38006 |
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| Azure Stack Hub |
docs.microsoft.com/en-us/azure-stack/operator/azure-stack-apply-updates?view=azs-2108 |