VDB

CVE-2022-21899

CVE-2022-21899 PUBLISHED CVSS 5.5 MEDIUM

Windows Extensible Firmware Interface Security Feature Bypass Vulnerability.

EPSS 0.28% · 51.5th percentile

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
EPSS Score
0.28%
51.5th percentile

Affected Products

VendorProductVersions
microsoftwindows_76.1.0, 6.1.0
MicrosoftWindows Server 2012 R2 (Server Core installation)6.3.9600.0
MicrosoftWindows Server 20126.2.9200.0
microsoftwindows_rt_8.1
MicrosoftWindows Server 2008 R2 Service Pack 16.1.7601.0
MicrosoftWindows Server 2008 R2 Service Pack 1 (Server Core installation)6.1.7601.0
microsoftwindows_server_2008*
MicrosoftWindows Server 2012 (Server Core installation)6.2.9200.0
microsoftwindows_server_2012_R26.3.9600.0, 6.3.9600.0
microsoftwindows_server_2008_R26.1.7601.0, 6.1.7601.0
microsoftwindows_server_2012r2, 6.2.9200.0, 6.2.9200.0
microsoftwindows_10
MicrosoftWindows 10 Version 150710.0.10240.0
MicrosoftWindows 8.16.3.0
MicrosoftWindows Server 2012 R26.3.9600.0
microsoftwindows_8.16.3.0
MicrosoftWindows 76.1.0
MicrosoftWindows 7 Service Pack 16.1.0
microsoftwindows_10_150710.0.10240.0

Exploit Intelligence

…and 6 more exploits

Timeline

  • Jan 11, 2022 CVE Published
  • Feb 8, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 24, 2022 EPSS Score
  • Jul 16, 2022 EPSS Score
  • Sep 7, 2022 EPSS Score
  • Dec 21, 2022 EPSS Score
  • Feb 11, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 5, 2023 EPSS Score
  • May 27, 2023 EPSS Score
  • Jul 18, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›