CVE-2022-22047
CVSS v3.1
7.8 (High)
CVSS v2.0
7.2 (High)
EPSS
0.07 % (31th)
Affected Products
16
Advisories
2
NVD Status
Analyzed
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability
Weaknesses
- CWE-426
- Untrusted Search Path
- CVE Status
- PUBLISHED
- NVD Status
- Analyzed
- CNA
- Microsoft Corporation
- Published Date
-
2022-07-12 23:15:10
(2 years ago) - Updated Date
-
2024-08-14 20:06:39
(5 weeks ago)
Microsoft Windows Client Server Runtime Subsystem (CSRSS) Privilege Escalation Vulnerability (CISA - Known Exploited Vulnerabilities Catalog)
- Description
- Microsoft Windows CSRSS contains an unspecified vulnerability that allows for privilege escalation to SYSTEM privileges.
- Required Action
- Apply updates per vendor instructions.
- Known to be Used in Ransomware Campaigns
- Unknown
- Notes
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22047; https://nvd.nist.gov/vuln/detail/CVE-2022-22047
- Vendor
- Microsoft
- Product
- Windows
- In CISA Catalog from
-
2022-07-12
(2 years ago) - Due Date
-
2022-08-02
(2 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...