CVE-2022-37976

Опубликовано: 14 окт. 2022

Источник: msrc

CVSS3: 8.8

EPSS Низкий

Описание

Active Directory Certificate Services Elevation of Privilege Vulnerability

Меры по смягчению последствий

Mitigation refers to a setting, common configuration, or general best-practice, existing in a default state, that could reduce the severity of exploitation of a vulnerability. The following mitigating factors might be helpful in your situation:

A system is vulnerable only if both the Active Directory Certificate Services role and the Active Directory Domain Services role are installed on a server in the network. Note that they would not necessarily need to be on the same server.

FAQ

What privileges could be gained by an attacker who successfully exploited the vulnerability?

An attacker who successfully exploited this vulnerability could gain domain administrator privileges.

How could an attacker exploit this vulnerability?

A malicious DCOM client could coerce a DCOM server to authenticate to it through the Active Directory Certificate Service (ADCS), and use the credential to launch a cross-protocol attack.

Обновления

Продукт	Статья	Обновление
Windows Server 2008 for 32-bit Systems Service Pack 2	5018450 5018446	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2	5018450 5018446	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)	5018450 5018446	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)	5018454 5018479	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1	5018454 5018479	Monthly Rollup Security Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)	5018450 5018446	Monthly Rollup Security Only
Windows Server 2012	5018457 5018478	Monthly Rollup Security Only
Windows Server 2012 (Server Core installation)	5018457 5018478	Monthly Rollup Security Only
Windows Server 2012 R2	5018474 5018476	Monthly Rollup Security Only
Windows Server 2012 R2 (Server Core installation)	5018474 5018476	Monthly Rollup Security Only

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

Older Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 91%

0.07525

Низкий

8.8 High

CVSS3

Связанные уязвимости

CVE-2022-37976

CVSS3: 8.8

nvd

больше 2 лет назад

Active Directory Certificate Services Elevation of Privilege Vulnerability

GHSA-8vr2-6v7f-c42x

CVSS3: 8.8

github

больше 2 лет назад

Active Directory Certificate Services Elevation of Privilege Vulnerability.

BDU:2022-07185

CVSS3: 8.8

fstec

больше 2 лет назад

Уязвимость службы Active Directory Certificate операционных систем Windows, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 91%

0.07525

Низкий

8.8 High

CVSS3