TR-19-038 (Microsoft Nisan 2019 Güvenlik Güncellemelerini Yayınladı)

Genel Bilgi

Microsoft, 2019 yılının Nisan Ayı kümülatif güvenlik güncellemesini Nisan ayı için yayınladı. Windows 10 ve Windows RT 8.1 için zafiyetleri onarmayı hedefleyen bu güncelleme aşağıdaki ürünlerini kapsıyor

  • Adobe Flash Player
  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • ChakraCore
  • ASP.NET
  • Microsoft Exchange Server
  • Team Foundation Server
  • Azure DevOps Server
  • Open Enclave SDK
  • Windows Admin Center

Etki

Mevcut güvenlik açıklıkları nedeniyle etkilenen sistemlerin siber saldırganlar tarafından kontrol altına alınması ihtimal dâhilindedir. Güncellemelerle ilgili CVE zafiyet kodları aşağıdaki gibidir;

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM), kullanıcı ve sistem yöneticilerine; Microsoft'un Nisan ayı güvenlik bildirim özetini ve deploy bilgilendirmesini incelemelerini ve gerekli güncellemeleri yapmalarını tavsiye etmektedir.

Kaynaklar

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV190011

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV990001

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0688

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0801

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0802

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0814

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0822

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0823

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0824

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0825

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0826

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0827

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0828

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0830

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0831

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0833

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0835

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0837

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0838

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0839

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0840

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0844

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0845

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0846

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0847

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0848

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0849

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0851

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0876

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0879

https://www.us-cert.gov/ncas/current-activity/2019/04/09/Microsoft-Releases-April-2019-Security-Updates

2019-04-11