VDB

CVE-2022-23291

CVE-2022-23291 PUBLISHED CVSS 7.800000190734863 HIGH

Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-23288.

EPSS 0.39% · 60.2th percentile

Risk Scores

CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
0.39%
60.2th percentile

Affected Products

VendorProductVersions
microsoftwindows_server2022, 20h2
MicrosoftWindows Server version 20H210.0.0
microsoftwindows_10_20H210.0.0
microsoftwindows_10_21H110.0.0
microsoftwindows_10*, 21h1, 1809
MicrosoftWindows 10 Version 20H210.0.0
MicrosoftWindows Server 201910.0.17763.0
MicrosoftWindows Server 2019 (Server Core installation)10.0.17763.0
MicrosoftWindows 11 version 21H210.0.0
microsoftwindows_server_202210.0.20348.0
MicrosoftWindows 10 Version 21H210.0.19043.0
microsoftwindows_server_201910.0.17763.0, 10.0.17763.0
microsoftwindows_server_20H210.0.0
microsoftwindows_11
microsoftwindows_10_21H210.0.19043.0
microsoftwindows_10_190910.0.0
MicrosoftWindows 10 Version 21H110.0.0
MicrosoftWindows 10 Version 190910.0.0
MicrosoftWindows 10 Version 180910.0.17763.0, 10.0.0
MicrosoftWindows Server 202210.0.20348.0

…and 2 more

Timeline

  • Mar 8, 2022 CVE Published
  • Mar 10, 2022 EPSS Score
  • Apr 30, 2022 EPSS Score
  • Jun 21, 2022 EPSS Score
  • Aug 12, 2022 EPSS Score
  • Oct 2, 2022 EPSS Score
  • Jan 13, 2023 EPSS Score
  • Mar 5, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 26, 2023 EPSS Score
  • Jun 16, 2023 EPSS Score
  • Aug 6, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›