VDB
CVE-2022-30137
CVE-2022-30137
PUBLISHED
CVSS 6.699999809265137 MEDIUM
De multiples vulnérabilités ont été corrigées dans <span class="textit">les produits Microsoft</span>. Elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et une exécution de code à distance.
EPSS 0.44% · 63.5th percentile
Risk Scores
CVSS 3.1
6.699999809265137
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
EPSS Score
0.44%
63.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| microsoft | service_fabric | N/A |
| Microsoft | N/A | |
| Microsoft | Service Fabric | * |
| Microsoft | Azure |
Exploit Intelligence
- https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)
- CIRCL seen: CVE-2022-30137 (circl-sighting)
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30137 (circl)
- Azure Service Fabric Container Elevation of Privilege Vulnerability (circl)
- rules.yar (github-yara)
- rules.yar (github-yara)
- rules.yar (github-yara)
- rules.yar (github-yara)
Timeline
- Jun 14, 2022 CVE Published
- Jun 16, 2022 EPSS Score
- Jun 17, 2022 CVE Updated
- Jun 28, 2022 PoC Published
- Aug 4, 2022 EPSS Score
- Nov 8, 2022 EPSS Score
- Dec 26, 2022 EPSS Score
- Feb 12, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 19, 2023 EPSS Score
- Jul 6, 2023 EPSS Score
- Aug 23, 2023 EPSS Score