CVE-2022-21887 — Vulnetix

CVE-2022-21887 PUBLISHED CVSS 7 HIGH

Win32k Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21882.

EPSS 0.46% · 64.6th percentile

Risk Scores

CVSS 3.1

7

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

EPSS Score

0.46%

64.6th percentile

Affected Products

Vendor	Product	Versions
microsoft	windows_11
microsoft	windows_11_21H2	10.0.0
Microsoft	Windows 11 version 21H2	10.0.0

Exploit Intelligence

https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21887 (circl)
Win32k Elevation of Privilege Vulnerability (circl)
CVE-2022-21882.yara (github-yara)
CVE-2022-21882.yara (github-yara)
CVE-2022-21882.yara (github-yara)
CVE-2022-21882.yara (github-yara)
CVE-2022-21877.yara (github-yara)
CVE-2022-21877.yara (github-yara)
CVE-2022-21877.yara (github-yara)

…and 5 more exploits

Timeline

Jan 11, 2022 CVE Published
Feb 8, 2022 EPSS Score
Apr 1, 2022 EPSS Score
May 24, 2022 EPSS Score
Jul 16, 2022 EPSS Score
Sep 7, 2022 EPSS Score
Oct 29, 2022 EPSS Score
Dec 21, 2022 EPSS Score
Feb 11, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 5, 2023 EPSS Score
May 27, 2023 EPSS Score

References

https://msrc.microsoft.com/update-guide/ advisory
Win32k Elevation of Privilege Vulnerability vendor-advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21887 url
https://nvd.nist.gov/vuln/detail/CVE-2022-21887 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›