Microsoft en son Yama Per\u015fembesi\u2019nde (10 May\u0131s) 74 g\u00fcvenlik a\u00e7\u0131\u011f\u0131 i\u00e7in g\u00fcncelleme yay\u0131nlad\u0131. Bu g\u00fcvenlik a\u00e7\u0131klar\u0131ndan en az biri, sald\u0131rganlar taraf\u0131ndan aktif \u015fekilde k\u00f6t\u00fcye kullan\u0131l\u0131yor. Bu y\u00fczden yamalar\u0131 m\u00fcmk\u00fcn olan en k\u0131sa s\u00fcrede y\u00fcklemek gerekiyor.<\/p>\n
G\u00f6r\u00fcnen o ki, bu g\u00fcncelleme paketinde yama yay\u0131nlanan en tehlikeli g\u00fcvenlik a\u00e7\u0131\u011f\u0131, Windows Yerel G\u00fcvenlik Yetkilisi\u2019nde bulunan CVE-2022-26925<\/a>. \u00d6te yandan bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131 CVSS \u00f6l\u00e7e\u011finde 8.1 puanla g\u00f6rece d\u00fc\u015f\u00fck \u015fiddette. Yine de Microsoft temsilcileri g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131n Active Directory Sertifika Hizmetleri\u2019ne y\u00f6nelik NTLM Ge\u00e7i\u015f sald\u0131r\u0131lar\u0131nda<\/a> kullan\u0131ld\u0131\u011f\u0131nda \u015fiddet d\u00fczeyinin CVSS 9.8\u2019e y\u00fckseldi\u011fine inan\u0131yor. \u015eiddet d\u00fczeyindeki bu y\u00fckseli\u015fin sebebi, b\u00f6yle bir senaryoda CVE-2022-26925\u2019in sald\u0131rgan\u0131n bir etki alan\u0131 denetleyicisinde kimlik do\u011frulamas\u0131 yapmas\u0131na izin vermesi.<\/p>\n Bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131 Windows 7 (sunucu sistemleri i\u00e7in Windows Server 2008) ve sonras\u0131 t\u00fcm Windows i\u015fletim sistemlerini etkileyebiliyor. Microsoft bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131n nas\u0131l k\u00f6t\u00fcye kullan\u0131ld\u0131\u011f\u0131na dair ayr\u0131nt\u0131lara girmese de, sorunla ilgili a\u00e7\u0131klamadan hareketle bilinmeyen sald\u0131rganlar\u0131n CVE-2022-26925\u2019i aktif olarak k\u00f6t\u00fcye kulland\u0131\u011f\u0131n\u0131 anl\u0131yoruz. \u0130yi haber, uzmanlara g\u00f6re ger\u00e7ek sald\u0131r\u0131larda bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 k\u00f6t\u00fcye kullanman\u0131n olduk\u00e7a zor olmas\u0131.<\/p>\n Yama, Yerel G\u00fcvenlik Yetkilisi Uzaktan Protokol\u00fc\u2019ne anonim ba\u011flant\u0131 giri\u015fimlerini tespit edip reddediyor. Bununla birlikte, resmi SSS\u2019e<\/a> g\u00f6re Windows Server 2008 SP2\u2019de bu g\u00fcncellemeyi y\u00fcklemek yedekleme yaz\u0131l\u0131mlar\u0131n\u0131 etkileyebiliyor.<\/p>\n Son g\u00fcncelleme, CVE-2022-26925\u2019in yan\u0131 s\u0131ra \u201ckritik\u201d \u015fiddet d\u00fczeyindeki bir\u00e7ok ba\u015fka g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 da onar\u0131yor. Bunlar\u0131n aras\u0131nda Windows A\u011f Dosya Sistemi\u2019ndeki (NFS) RCE g\u00fcvenlik a\u00e7\u0131\u011f\u0131 olan CVE-2022-26937<\/a>\u2018nin yan\u0131 s\u0131ra, LDAP servisindeki iki RCE g\u00fcvenlik a\u00e7\u0131\u011f\u0131 olan CVE-2022-22012<\/a>\u00a0ve CVE-2022-29130<\/a> da yer al\u0131yor.<\/p>\n Yamalar yay\u0131nland\u0131\u011f\u0131 s\u0131rada herkes\u00e7e bilinen iki di\u011fer g\u00fcvenlik a\u00e7\u0131\u011f\u0131 da, Insight Software\u2019in Magnitude Simba Amazon Redshift s\u00fcr\u00fcc\u00fcs\u00fcndeki bir hata olan CVE-2022-29972<\/a> ve Windows Hyper-V\u2019deki bir DoS g\u00fcvenlik a\u00e7\u0131\u011f\u0131 olan CVE-2022-22713<\/a>. Ancak bug\u00fcne kadar bunlar\u0131n k\u00f6t\u00fcye kullan\u0131m\u0131na y\u00f6nelik herhangi bir giri\u015fim tespit edilmedi.<\/p>\n \u00d6ncelikle, Microsoft\u2019un son g\u00fcncellemelerini y\u00fckleyin. Bir sebeple ortam\u0131n\u0131z i\u00e7in bu m\u00fcmk\u00fcn de\u011filse Microsoft\u2019un resmi May\u0131s 2022 G\u00fcvenlik G\u00fcncellemeleri rehberindeki<\/a> S\u0131k Sorulan Sorular, Risk Azaltma Y\u00f6ntemleri ve Ge\u00e7ici \u00c7\u00f6z\u00fcmler<\/em> b\u00f6l\u00fcm\u00fcne g\u00f6z at\u0131n. Burada anlat\u0131lan y\u00f6ntemlerden biri, altyap\u0131n\u0131zla ilgili g\u00fcvenli a\u00e7\u0131klar\u0131ndan korunman\u0131za yard\u0131mc\u0131 olabilir.<\/p>\nDi\u011fer g\u00fcvenlik a\u00e7\u0131klar\u0131<\/h2>\n
Kendinizi koruman\u0131n yollar\u0131<\/h2>\n