CVE-2022-23296

Опубликовано: 08 мар. 2022

Источник: msrc

CVSS3: 7.8

EPSS Низкий

Описание

Windows Installer Elevation of Privilege Vulnerability

Обновления

Продукт	Статья	Обновление
Windows Server 2008 for 32-bit Systems Service Pack 2	5011534 5011525	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2	5011534 5011525	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)	5011534 5011525	Monthly Rollup Security Only
Windows 7 for 32-bit Systems Service Pack 1	5011552 5011529	Monthly Rollup Security Only
Windows 7 for x64-based Systems Service Pack 1	5011552 5011529	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)	5011552 5011529	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1	5011552 5011529	Monthly Rollup Security Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)	5011534 5011525	Monthly Rollup Security Only
Windows Server 2012	5011535 5011527	Monthly Rollup Security Only
Windows Server 2012 (Server Core installation)	5011535 5011527	Monthly Rollup Security Only

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

Older Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 67%

0.00536

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2022-23296

CVSS3: 7.8

nvd

больше 3 лет назад

Windows Installer Elevation of Privilege Vulnerability

GHSA-3p6p-69fx-rphw

CVSS3: 7.8

github

больше 3 лет назад

Windows Installer Elevation of Privilege Vulnerability.

BDU:2022-01411

CVSS3: 7.8

fstec

больше 3 лет назад

Уязвимость компонента Windows Installer операционной системы Microsoft Windows, позволяющая нарушителю обойти ограничения безопасности и повысить свои привилегии

EPSS

Процентиль: 67%

0.00536

Низкий

7.8 High

CVSS3