VDB
CVE-2022-21972
CVE-2022-21972
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-23270.
EPSS 48.56% · 97.8th percentile
Risk Scores
CVSS v2.0
9.300000190734863
EPSS Score
48.56%
97.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| microsoft | windows_10 | 20h2, 21h1, 1607 |
| microsoft | windows_server_2019 | |
| microsoft | windows_11 | |
| microsoft | windows_8.1 | |
| microsoft | windows_server_2022 | |
| microsoft | windows_7 | |
| microsoft | windows_rt_8.1 | |
| microsoft | windows_server_2012 | * |
| microsoft | windows_server | 20h2 |
| microsoft | windows_server_2008 | r2 |
| microsoft | windows_server_2016 |
Timeline
- May 10, 2022 CVE Updated
- May 10, 2022 CVE Published
- May 11, 2022 EPSS Score
- Aug 18, 2022 EPSS Score
- Oct 7, 2022 EPSS Score
- Jan 13, 2023 EPSS Score
- Mar 3, 2023 EPSS Score
- Jun 10, 2023 EPSS Score
- Sep 16, 2023 EPSS Score
- Nov 4, 2023 EPSS Score
- Feb 11, 2024 EPSS Score
- Mar 31, 2024 EPSS Score