IT博客汇 | Windows Wi-Fi驱动程序远程代码执行漏洞(CVE-2024-30078) Windows所有支持版本受到威胁

Windows Wi-Fi驱动程序远程代码执行漏洞(CVE-2024-30078) Windows所有支持版本受到威胁

C1G发表于 2024-08-01 10:21:58

一、基本情况
Windows Wi-Fi 驱动程序是Windows系统的重要固件之一。

二、漏洞描述
Windows Wi-Fi 驱动程序中存在输入验证不当漏洞，未经身份验证的攻击者可以向使用Wi-Fi网络适配器的相邻系统/设备发送恶意网络数据包，导致在无需用户交互的情况下实现远程代码执行。利用该漏洞需要靠近目标系统来发送和接收无线电传输。

三、影响范围
受影响系统及版本

平台

受影响的微软驱动程序版本

Windows 10 Version 1809

32-bit Systems

x64-based Systems

ARM64-based Systems

10.0.0 – 10.0.17763.5936之前

Windows Server 2019

x64-based Systems

10.0.0 – 10.0.17763.5936之前

Windows Server 2019 (Server Core installation)

x64-based Systems

10.0.0 – 10.0.17763.5936之前

Windows Server 2022

x64-based Systems

10.0.0 -10.0.20348.2527之前

10.0.0 – 10.0.20348.2522之前

Windows 11 version 21H2

x64-based Systems

ARM64-based Systems

10.0.0 – 10.0.22000.3019之前

Windows 10 Version 21H2

32-bit Systems

ARM64-based Systems

(x64-based Systems)

10.0.0 – 10.0.19043.4529之前

Windows 11 version 22H2

ARM64-based Systems

x64-based Systems

10.0.0 – 10.0.22621.3737之前

Windows 10 Version 22H2

x64-based Systems

ARM64-based Systems

32-bit Systems

10.0.0 – 10.0.19043.4529之前

Windows 11 version 22H3

ARM64-based Systems

10.0.0 – 10.0.22631.3737之前

Windows 11 Version 23H2

x64-based Systems

10.0.0 – 10.0.22631.3737之前

Windows Server 2022、23H2 Edition (Server Core installation)

x64-based Systems

10.0.0 – 10.0.25398.950之前

Windows 10 Version 1507

32-bit Systems

x64-based Systems

10.0.0 – 10.0.10240.20680之前

Windows 10 Version 1607

32-bit Systems

x64-based Systems

10.0.0 – 10.0.14393.7070之前

Windows Server 2016

x64-based Systems

10.0.0 – 10.0.14393.7070之前

Windows Server 2016 (Server Core installation)

x64-based Systems

10.0.0 -10.0.14393.7070之前

Windows Server 2008 Service Pack 2

32-bit Systems

6.0.0 – 6.0.6003.22720之前

Windows Server 2008 Service Pack 2 (Server Core installation)

32-bit Systems

x64-based Systems

6.0.0 – 6.0.6003.22720之前

Windows Server 2008 Service Pack 2

x64-based Systems

6.0.0 – 6.0.6003.22720之前

Windows Server 2008 R2 Service Pack 1

x64-based Systems

6.1.0 – 6.1.7601.27170之前

Windows Server 2008 R2 Service Pack 1 (Server Core installation)

x64-based Systems

6.0.0 – 6.1.7601.27170之前

Windows Server 2012

x64-based Systems

6.2.0 – 6.2.9200.24919之前

Windows Server 2012 (Server Core installation)

x64-based Systems

6.2.0 – 6.2.9200.24919之前

Windows Server 2012 R2

x64-based Systems

6.3.0 – 6.3.9600.22023之前

Windows Server 2012 R2 (Server Core installation)

x64-based Systems

6.3.0 – 6.3.9600.22023之前

四、修复建议
微软已在6月补丁日中发布了该漏洞的安全更新，建议受影响用户及时安装补丁修复该漏洞。可以自动更新或者在Microsoft官方下载相应补丁进行更新。

下载链接：

https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-30078

五、参考链接
https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-30078

https://www.cve.org/CVERecord?id=CVE-2024-30078

The post Windows Wi-Fi驱动程序远程代码执行漏洞(CVE-2024-30078) Windows所有支持版本受到威胁 first appeared on C1G军火库.