CVE-2022-24505 — Vulnetix

CVE-2022-24505 PUBLISHED CVSS 7 HIGH

Windows ALPC Elevation of Privilege Vulnerability

EPSS 0.20% · 42.2th percentile

Risk Scores

CVSS 3.1

7

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

EPSS Score

0.20%

42.2th percentile

Affected Products

Vendor	Product	Versions
microsoft	windows_10_1909	10.0.0
Microsoft	Windows 10 Version 1909	10.0.0
microsoft	windows_server_20H2	10.0.0
Microsoft	Windows 10 Version 21H1	10.0.0
microsoft	windows_10	1909, 1607, *
microsoft	windows_10_1607	10.0.14393.0
Microsoft	Windows 10 Version 1809	10.0.0, 10.0.17763.0
microsoft	windows_11
Microsoft	Windows 10 Version 21H2	10.0.19043.0
microsoft	windows_10_1809	10.0.17763.0, 10.0.0
Microsoft	Windows Server version 20H2	10.0.0
microsoft	windows_10_21H1	10.0.0
microsoft	windows_11_21H2	10.0.0
microsoft	windows_server_2019	10.0.17763.0, 10.0.17763.0
Microsoft	Windows Server 2016	10.0.14393.0
microsoft	windows_server_2022	10.0.20348.0
Microsoft	Windows Server 2019	10.0.17763.0
microsoft	windows_10_1507	10.0.10240.0
Microsoft	Windows 10 Version 1607	10.0.14393.0
Microsoft	Windows 11 version 21H2	10.0.0

…and 9 more

Exploit Intelligence

Timeline

Mar 8, 2022 CVE Published
Mar 10, 2022 EPSS Score
Apr 30, 2022 EPSS Score
Jun 21, 2022 EPSS Score
Aug 12, 2022 EPSS Score
Oct 3, 2022 EPSS Score
Nov 23, 2022 EPSS Score
Jan 13, 2023 EPSS Score
Mar 6, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 26, 2023 EPSS Score
Jun 17, 2023 EPSS Score

References

https://msrc.microsoft.com/update-guide/ advisory
Windows ALPC Elevation of Privilege Vulnerability vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2022-24505 advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-24505 url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›