VDB

CVE-2022-26936

CVE-2022-26936 PUBLISHED CVSS 8.800000190734863 HIGH

Active Directory Domain Services Elevation of Privilege Vulnerability

EPSS 17.96% · 95.3th percentile

Risk Scores

CVSS v3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
17.96%
95.3th percentile

Affected Products

VendorProductVersions
microsoftwindows_server_202210.0.20348.0
microsoftwindows_10_21H210.0.19043.0
microsoftwindows_server_201610.0.14393.0, 10.0.14393.0
MicrosoftWindows Server 201610.0.14393.0
MicrosoftWindows Server version 20H210.0.0
MicrosoftWindows Server 2012 R26.3.9600.0
MicrosoftWindows 10 Version 20H210.0.0
MicrosoftWindows 8.16.3.0
microsoftwindows_10_160710.0.14393.0
MicrosoftWindows Server 2012 R2 (Server Core installation)6.3.9600.0
MicrosoftWindows Server 2016 (Server Core installation)10.0.14393.0
microsoftwindows_10_20H210.0.0
microsoftwindows_10_190910.0.0
microsoftwindows_10_21H110.0.0
microsoftwindows_10_180910.0.0, 10.0.17763.0
microsoftwindows_8.16.3.0
microsoftwindows_10_150710.0.10240.0
MicrosoftWindows Server 2019 (Server Core installation)10.0.17763.0
MicrosoftWindows 10 Version 21H110.0.0
MicrosoftWindows 10 Version 190910.0.0

…and 11 more

Timeline

  • May 10, 2022 CVE Published
  • May 11, 2022 EPSS Score
  • May 11, 2022 PoC Published
  • Jan 27, 2023 PoC Published
  • Mar 7, 2023 EPSS Score
  • Jun 14, 2023 PoC Published
  • Feb 12, 2024 EPSS Score
  • Apr 24, 2024 EPSS Score
  • Dec 17, 2024 EPSS Score
  • Dec 24, 2024 PoC Published
  • Jan 2, 2025 CVE Updated
  • Feb 6, 2025 PoC Published

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›