CVE-2022-30141

Опубликовано: 14 июн. 2022

Источник: msrc

CVSS3: 8.1

EPSS Низкий

Описание

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

FAQ

How could an attacker exploit this vulnerability?

An unauthenticated attacker could send a specially crafted request to a vulnerable server. Successful exploitation could result in the attacker's code running in the context of the SYSTEM account.

Are there any special conditions necessary for this vulnerability to be exploitable?

Yes. This vulnerability is only exploitable if the MaxReceiveBuffer LDAP policy is set to a value higher than the default value. Systems with the default value of this policy would not be vulnerable.

For more information, please see LDAP policies.

According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?

Successful exploitation of this vulnerability requires an attacker to prepare the target environment to improve exploit reliability.

Обновления

Продукт	Статья	Обновление
Windows Server 2008 for 32-bit Systems Service Pack 2	5014752 5014743	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2	5014752 5014743	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)	5014752 5014743	Monthly Rollup Security Only
Windows 7 for 32-bit Systems Service Pack 1	5014748 5014742	Monthly Rollup Security Only
Windows 7 for x64-based Systems Service Pack 1	5014748 5014742	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)	5014748 5014742	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1	5014748 5014742	Monthly Rollup Security Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)	5014752 5014743	Monthly Rollup Security Only
Windows Server 2012	5014747 5014741	Monthly Rollup Security Only
Windows Server 2012 (Server Core installation)	5014747 5014741	Monthly Rollup Security Only

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

Older Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 85%

0.02795

Низкий

8.1 High

CVSS3

Связанные уязвимости

CVE-2022-30141

CVSS3: 8.1

nvd

около 3 лет назад

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

GHSA-7c5q-5246-vr4p

CVSS3: 8.1

github

около 3 лет назад

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161.

BDU:2022-03609

CVSS3: 8.1

fstec

около 3 лет назад

Уязвимость реализации протокола службы каталогов LDAP (Lightweight Directory Access Protocol) операционной системы Windows, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 85%

0.02795

Низкий

8.1 High

CVSS3