VDB

CVE-2022-21882

CVE-2022-21882 PUBLISHED KEV CVSS 7 HIGH

Win32k Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21887.

EPSS 89.14% · 99.5th percentile

Risk Scores

CVSS v3.1
7
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
89.14%
99.5th percentile

Affected Products

VendorProductVersions
MicrosoftWindows Server version 20H210.0.0
MicrosoftWindows Server 202210.0.20348.0
microsoftwindows_10_21h20
microsoftwindows_10_190910.0.0, 0
microsoftwindows_10_20H210.0.0
microsoftwindows_10_20h20
microsoftwindows_11_21h20
MicrosoftWindows 10 Version 180910.0.0, 10.0.17763.0
microsoftwindows_10_21H210.0.19043.0
microsoftwindows_server_201910.0.17763.0, 10.0.17763.0, 0
microsoftwindows_server_20h20
MicrosoftWindows Server 2019 (Server Core installation)10.0.17763.0
MicrosoftWindows 10 Version 190910.0.0
MicrosoftWindows 11 version 21H210.0.0
MicrosoftWindows 10 Version 21H210.0.19043.0
microsoftwindows_server_20H210.0.0
MicrosoftWindows 10 Version 20H210.0.0
microsoftwindows_server_202210.0.20348.0, 0
microsoftwindows_10_21H110.0.0
MicrosoftWindows Server 201910.0.17763.0

…and 4 more

Timeline

  • Jan 19, 1970 VulnCheck XDB Entry
  • Jan 19, 1970 VulnCheck XDB Entry
  • Apr 9, 2019 VulnCheck KEV Exploitation
  • Oct 20, 2020 VulnCheck KEV Exploitation
  • Feb 11, 2021 VulnCheck KEV Exploitation
  • Feb 22, 2021 VulnCheck KEV Exploitation
  • Aug 17, 2021 VulnCheck KEV Exploitation
  • Jan 11, 2022 PoC Published
  • Jan 11, 2022 CVE Published
  • Feb 4, 2022 CISA KEV Added
  • Feb 8, 2022 EPSS Score
  • Feb 25, 2022 PoC Published

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›