MS 12¿ù º¸¾È À§Çù¿¡ µû¸¥ Á¤±â º¸¾È ¾÷µ¥ÀÌÆ® ±Ç°í
°ü¸®ÀÚ ( help@hhosting.co.kr ) 2023-12-15 09:19:31
Á¶È¸¼ö 32,904
¡à 12 ¿ù º¸¾È¾÷µ¥ÀÌÆ® °³¿ä (ÃÑ 9 Á¾ )
o µî±Þ : ±ä±Þ (Critical) 7 Á¾ , Áß¿ä (Important) 2 Á¾
o ¹ßÇ¥ÀÏ : 2023.12.12.(È)
o ¾÷µ¥ÀÌÆ® ³»¿ë
Á¦Ç°±º
Áß¿äµµ
¿µÇâ
Windows 11 v23H2,
Windows 11 v22H2,
Windows 11 v21H2
±ä±Þ
¿ø°Ý ÄÚµå ½ÇÇà
Windows 10 22H2, Windows 10 21H2
±ä±Þ
¿ø°Ý ÄÚµå ½ÇÇà
Windows Server 2022 23H2 ¹öÀü(Server Core ¼³Ä¡),
Windows Server 2022
±ä±Þ
¿ø°Ý ÄÚµå ½ÇÇà
Windows Server 2019
±ä±Þ
¿ø°Ý ÄÚµå ½ÇÇà
Windows Server 2016
±ä±Þ
¿ø°Ý ÄÚµå ½ÇÇà
Microsoft Office
Áß¿ä
Á¤º¸ À¯Ãâ
Microsoft Dynamics 365
±ä±Þ
½ºÇªÇÎ
Microsoft Azure
±ä±Þ
±ÇÇÑ »ó½Â
Microsoft Malware Protection Platform
Áß¿ä
¼ºñ½º °ÅºÎ
[Âü°í »çÀÌÆ® ]
[1] (ÇѱÛ) https://msrc.microsoft.com/update-guide/ko-kr/
[2] (¿µ¹®) https://msrc.microsoft.com/update-guide/en-us/
[3] https://msrc.microsoft.com/update-guide/releaseNote/2023-Dec
o Ãë¾àÁ¡ ¿ä¾à Á¤º¸
Á¦Ç° Ä«Å×°í¸®
CVE ¹øÈ£
CVE Á¦¸ñ
Microsoft Edge (Chromium-based)
CVE-2023-6512
Chromium: CVE-2023-6512 À¥ ºê¶ó¿ìÀú UI¿¡¼ ºÎÀûÀýÇÑ ±¸Çö
Microsoft Edge (Chromium-based)
CVE-2023-6511
Chromium: CVE-2023-6511 ÀÚµ¿ ä¿ì±â¿¡¼ ºÎÀûÀýÇÑ ±¸Çö
Microsoft Edge (Chromium-based)
CVE-2023-6510
Chromium: CVE-2023-6510 Media Capture¿¡¼ UaF(Use after free)
Microsoft Edge (Chromium-based)
CVE-2023-6509
Chromium: CVE-2023-6509 °¡·Î ÆгΠ°Ë»ö¿¡¼ UaF(Use after free)
Microsoft Edge (Chromium-based)
CVE-2023-6508
Chromium: CVE-2023-6508 ¹Ìµð¾î ½ºÆ®¸²¿¡¼ UaF(Use after free)
Microsoft Edge (Chromium-based)
CVE-2023-6351
Chromium: CVE-2023-6351 Use after free in libavif
Microsoft Edge (Chromium-based)
CVE-2023-6350
Chromium: CVE-2023-6350 Out of bounds memory access in libavif
Microsoft Edge (Chromium-based)
CVE-2023-6348
Chromium: CVE-2023-6348 Type Confusion in Spellcheck
Microsoft Edge (Chromium-based)
CVE-2023-6347
Chromium: CVE-2023-6347 Use after free in Mojo
Microsoft Edge (Chromium-based)
CVE-2023-6346
Chromium: CVE-2023-6346 Use after free in WebAudio
Microsoft Edge (Chromium-based)
CVE-2023-6345
Chromium: CVE-2023-6345 Integer overflow in Skia
Microsoft Edge (Chromium-based)
CVE-2023-6112
Chromium: CVE-2023-6112 Use after free in Navigation
Microsoft Edge (Chromium-based)
CVE-2023-5997
Chromium: CVE-2023-5997 Use after free in Garbage Collection
Windows Defender
CVE-2023-38175
Microsoft Windows Defender ±ÇÇÑ »ó½Â Ãë¾à¼º
Microsoft Edge (Chromium-based)
CVE-2023-38174
Microsoft Edge(Chromium ±â¹Ý) Á¤º¸ °ø°³ Ãë¾à¼º
Azure HDInsights
CVE-2023-38156
Azure HDInsight Apache Ambari JDBC Injection ±ÇÇÑ »ó½Â Ãë¾à¼º
Microsoft Edge (Chromium-based)
CVE-2023-36880
Microsoft Edge(Chromium ±â¹Ý) Á¤º¸ °ø°³ Ãë¾à¼º
.NET and Visual Studio
CVE-2023-36796
Visual Studio ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
.NET and Visual Studio
CVE-2023-36794
Visual Studio ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
.NET and Visual Studio
CVE-2023-36793
Visual Studio ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
.NET and Visual Studio
CVE-2023-36792
Visual Studio ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Windows Cloud Files Mini Filter Driver
CVE-2023-36696
Windows Ŭ¶ó¿ìµå ÆÄÀÏ ¹Ì´Ï ÇÊÅÍ µå¶óÀ̹ö ±ÇÇÑ »ó½Â Ãë¾à¼º
Windows UPnP Device Host
CVE-2023-36585
Windows upnphost.dll Denial of Service Vulnerability
ASP.NET
CVE-2023-36560
ASP.NET º¸¾È ±â´É ¹ÙÀÌÆнº Ãë¾à¼º
ASP.NET
CVE-2023-36558
ASP.NET Core - º¸¾È ±â´É ¹ÙÀÌÆнº Ãë¾à¼º
Microsoft Remote Registry Service
CVE-2023-36423
Microsoft ¿ø°Ý ·¹Áö½ºÆ®¸® ¼ºñ½º ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Azure
CVE-2023-36419
Azure HDInsight Apache Oozie Workflow Scheduler XXE ±ÇÇÑ »ó½Â Ãë¾à¼º
Windows Local Security Authority Subsystem Service (LSASS)
CVE-2023-36391
Local Security Authority Subsystem Service ±ÇÇÑ »ó½Â Ãë¾à¼º
.NET Framework
CVE-2023-36049
.NET, .NET Framework, Visual Studio ±ÇÇÑ »ó½Â Ãë¾à¼º
Microsoft Exchange Server
CVE-2023-36035
Microsoft Exchange Server ½ºÇªÇÎ Ãë¾à¼º
Microsoft Edge (Chromium-based)
CVE-2023-36026
Microsoft Edge(Chromium ±â¹Ý) ½ºÇªÇÎ Ãë¾à¼º
Windows SmartScreen
CVE-2023-36025
Windows SmartScreen º¸¾È ±â´É ¿ìȸ Ãë¾à¼º
Microsoft Dynamics
CVE-2023-36020
Microsoft Dynamics 365(¿Â-ÇÁ·¹¹Ì½º) ±³Â÷-»çÀÌÆ® ½ºÅ©¸³Æà Ãë¾à¼º
Microsoft Power Platform Connector
CVE-2023-36019
Microsoft Power Platform Connector ½ºÇªÇÎ Ãë¾à¼º
Microsoft PowerShell
CVE-2023-36013
PowerShell Information Disclosure Vulnerability
Windows DHCP Server
CVE-2023-36012
DHCP Server Service Á¤º¸ °ø°³ Ãë¾à¼º
Windows Win32K
CVE-2023-36011
Win32k ±ÇÇÑ »ó½Â Ãë¾à¼º
Windows Defender
CVE-2023-36010
Microsoft Defender ¼ºñ½º °ÅºÎ Ãë¾à¼º
Microsoft Office Word
CVE-2023-36009
Microsoft Word Á¤º¸ À¯Ãâ Ãë¾à¼º
Microsoft Edge (Chromium-based)
CVE-2023-36008
Microsoft Edge(Chromium ±â¹Ý) ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Microsoft WDAC OLE DB provider for SQL
CVE-2023-36006
SQL Server¿ë Microsoft WDAC OLE DB °ø±ÞÀÚ ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Windows Telephony Server
CVE-2023-36005
Windows ÀüÈ Åë½Å ¼¹ö ±ÇÇÑ »ó½Â Ãë¾à¼º
Windows DPAPI (Data Protection Application Programming Interface)
CVE-2023-36004
Windows DPAPI(Data Protection Application Programming Interface) ½ºÇªÇÎ Ãë¾à¼º
XAML Diagnostics
CVE-2023-36003
XAML Diagnostics ±ÇÇÑ »ó½Â Ãë¾à¼º
Windows Kernel-Mode Drivers
CVE-2023-35644
Windows Sysmain Service ±ÇÇÑ »ó½Â Ãë¾à¼º
Windows DHCP Server
CVE-2023-35643
DHCP Server Service Á¤º¸ °ø°³ Ãë¾à¼º
Windows Internet Connection Sharing (ICS)
CVE-2023-35642
ICS(ÀÎÅÍ³Ý ¿¬°á °øÀ¯) ¼ºñ½º °ÅºÎ Ãë¾à¼º
Windows Internet Connection Sharing (ICS)
CVE-2023-35641
ICS(ÀÎÅÍ³Ý ¿¬°á °øÀ¯) ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Windows ODBC Driver
CVE-2023-35639
Microsoft ODBC µå¶óÀ̹ö ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Windows DHCP Server
CVE-2023-35638
DHCP Server Service ¼ºñ½º °ÅºÎ Ãë¾à¼º
Microsoft Office Outlook
CVE-2023-35636
Microsoft Outlook Á¤º¸ À¯Ãâ Ãë¾à¼º
Windows Kernel
CVE-2023-35635
Windows Ä¿³Î ¼ºñ½º °ÅºÎ Ãë¾à¼º
Microsoft Bluetooth Driver
CVE-2023-35634
Windows Bluetooth µå¶óÀ̹ö ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Windows Kernel
CVE-2023-35633
Windows Ä¿³Î ±ÇÇÑ »ó½Â Ãë¾à¼º
Windows Internet Connection Sharing (ICS)
CVE-2023-35632
WinSock¿ë Windows º¸Á¶ ±â´É µå¶óÀ̹ö ±ÇÇÑ »ó½Â Ãë¾à¼º
Windows Win32K
CVE-2023-35631
Win32k ±ÇÇÑ »ó½Â Ãë¾à¼º
Windows Internet Connection Sharing (ICS)
CVE-2023-35630
ICS(ÀÎÅÍ³Ý ¿¬°á °øÀ¯) ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Windows USB Mass Storage Class Driver
CVE-2023-35629
Microsoft USBHUB 3.0 ÀåÄ¡ µå¶óÀ̹ö ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Windows MSHTML Platform
CVE-2023-35628
Windows MSHTML Ç÷§Æû ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Azure Machine Learning
CVE-2023-35625
SDK »ç¿ëÀÚ¿ë Azure Machine Learning ÄÄÇ»Æà ÀνºÅϽº Á¤º¸ °ø°³ Ãë¾à¼º
Azure Connected Machine Agent
CVE-2023-35624
Azure Connected Machine ¿¡ÀÌÀüÆ® ±ÇÇÑ »ó½Â Ãë¾à¼º
Microsoft Windows DNS
CVE-2023-35622
Windows DNS ½ºÇªÇÎ Ãë¾à¼º
Microsoft Dynamics
CVE-2023-35621
Microsoft Dynamics 365 ±ÝÀ¶ ¹× ¿î¿µ ¼ºñ½º °ÅºÎ Ãë¾à¼º
Microsoft Office Outlook
CVE-2023-35619
Mac¿ë Microsoft Outlook ½ºÇªÇÎ Ãë¾à¼º
Microsoft Edge (Chromium-based)
CVE-2023-35618
Microsoft Edge(Chromium ±â¹Ý) ±ÇÇÑ »ó½Â Ãë¾à¼º
Azure DevOps
CVE-2023-21751
Azure DevOps Server ½ºÇªÇÎ Ãë¾à¼º
Windows Media
CVE-2023-21740
Windows Media ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾à¼º
Chipsets
CVE-2023-20588
AMD: CVE-2023-20588 AMD ÃßÃø¼º À¯Ãâ º¸¾È ¾Ë¸²
Microsoft Exchange Server
CVE-2022-24477
Microsoft Exchange Server ±ÇÇÑ »ó½Â Ãë¾à¼º
Apps
CVE-2021-43890
Windows AppX ¼³Ä¡ °ü¸®ÀÚ ½ºÇªÇÎ Ãë¾à¼º
¡à ÀÛ¼º : Ãë¾àÁ¡ºÐ¼®ÆÀ