The remote Windows host is missing security update 5048653. It is, therefore, affected by multiple vulnerabilities

  - Input Method Editor (IME) Remote Code Execution Vulnerability (CVE-2024-49079)

  - Windows Common Log File System Driver Elevation of Privilege Vulnerability (CVE-2024-49090)

  - Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability (CVE-2024-49112)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

KB5048653: Windows Server 2022 version 23H2 Security Update (December 2024)

critical Nessus Plugin ID 212237

Version 1.2