CVE-2022-26808

Опубликовано: 12 апр. 2022

Источник: msrc

CVSS3: 7

EPSS Низкий

Описание

Windows File Explorer Elevation of Privilege Vulnerability

FAQ

According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?

Successful exploitation of this vulnerability requires an attacker to win a race condition.

Обновления

Продукт	Статья	Обновление
Windows 8.1 for 32-bit systems	5012670 5012639	Monthly Rollup Security Only
Windows 8.1 for x64-based systems	5012670 5012639	Monthly Rollup Security Only
Windows Server 2012 R2	5012670 5012639	Monthly Rollup Security Only
Windows RT 8.1	5012670	-
Windows Server 2012 R2 (Server Core installation)	5012670 5012639	Monthly Rollup Security Only
Windows 10 for 32-bit Systems	5012653	Security Update
Windows 10 for x64-based Systems	5012653	Security Update
Windows Server 2016	5012596	Security Update
Windows 10 Version 1607 for 32-bit Systems	5012596	Security Update
Windows 10 Version 1607 for x64-based Systems	5012596	Security Update

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

Older Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 34%

0.00133

Низкий

7 High

CVSS3

Связанные уязвимости

CVE-2022-26808

CVSS3: 7

nvd

около 3 лет назад

Windows File Explorer Elevation of Privilege Vulnerability

GHSA-3mgr-cw56-9xx7

CVSS3: 7

github

около 3 лет назад

Windows File Explorer Elevation of Privilege Vulnerability.

BDU:2022-03432

CVSS3: 7

fstec

около 3 лет назад

Уязвимость проводника Windows (Windows File Explorer) операционных систем Windows, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 34%

0.00133

Низкий

7 High

CVSS3