CVE-2022-30226

Опубликовано: 12 июл. 2022

Источник: msrc

CVSS3: 7.1

EPSS Низкий

Описание

Windows Print Spooler Elevation of Privilege Vulnerability

Обходное решение

Determine if the Print Spooler service is running

Run the following in Windows PowerShell:

Get-Service -Name Spooler

If the Print Spooler is running or if the service is not disabled, follow these steps:

Stop and disable the Print Spooler service

If stopping and disabling the Print Spooler service is appropriate for your environment, run the following in Windows PowerShell:

Stop-Service -Name Spooler -Force

Set-Service -Name Spooler -StartupType Disabled

Impact of workaround Stopping and disabling the Print Spooler service disables the ability to print both locally and remotely.

FAQ

What privileges could be gained by an attacker who successfully exploited the vulnerability?

An attacker would only be able to delete targeted files on a system. They would not gain privileges to view or modify file contents.

Обновления

Продукт	Статья	Обновление
Windows Server 2008 for 32-bit Systems Service Pack 2	5015866 5015870	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2	5015866 5015870	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)	5015866 5015870	Monthly Rollup Security Only
Windows 7 for 32-bit Systems Service Pack 1	5015861 5015862	Monthly Rollup Security Only
Windows 7 for x64-based Systems Service Pack 1	5015861 5015862	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)	5015861 5015862	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1	5015861 5015862	Monthly Rollup Security Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)	5015866 5015870	Monthly Rollup Security Only
Windows Server 2012	5015863 5015875	Monthly Rollup Security Only
Windows Server 2012 (Server Core installation)	5015863 5015875	Monthly Rollup Security Only

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

Older Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 42%

0.00198

Низкий

7.1 High

CVSS3

Связанные уязвимости

CVE-2022-30226

CVSS3: 7.1

nvd

почти 3 года назад

Windows Print Spooler Elevation of Privilege Vulnerability

GHSA-2vpj-39cg-g8g7

CVSS3: 7.1

github

почти 3 года назад

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22022, CVE-2022-22041, CVE-2022-30206.

BDU:2022-04810

CVSS3: 7.1

fstec

почти 3 года назад

Уязвимость диспетчера очереди печати Print Spooler операционных систем Windows, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 42%

0.00198

Низкий

7.1 High

CVSS3