VDB

CVE-2022-35745

CVE-2022-35745 PUBLISHED CVSS 8.100000381469727 HIGH

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

EPSS 2.63% · 86.0th percentile

Risk Scores

CVSS 3.1
8.100000381469727
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
2.63%
86.0th percentile

Affected Products

VendorProductVersions
MicrosoftWindows Server 2012 (Server Core installation)6.2.9200.0
MicrosoftWindows Server 2008 Service Pack 2 (Server Core installation)6.0.6003.0
microsoftwindows_server_2008_R26.1.7601.0, 6.1.7601.0
MicrosoftWindows 10 Version 20H210.0.0
microsoftwindows_10_20H210.0.0
microsoftwindows_10_20h20
MicrosoftWindows 11 version 21H210.0.0
microsoftwindows_11_21H210.0.0
MicrosoftWindows Server 2016 (Server Core installation)10.0.14393.0
MicrosoftWindows Server version 20H210.0.0
MicrosoftWindows Server 201910.0.17763.0
microsoftwindows_server_2008_sp26.0.6003.0, 6.0.6003.0, 6.0.6003.0
MicrosoftWindows Server 2008 Service Pack 26.0.6003.0
microsoftwindows_rt_8.1
MicrosoftWindows 10 Version 160710.0.14393.0
MicrosoftWindows 10 Version 150710.0.10240.0
microsoftwindows_11_21h20
microsoftwindows_server_202210.0.20348.0
microsoftwindows_server_2012_R26.3.9600.0, 6.3.9600.0
MicrosoftWindows 7 Service Pack 16.1.0

…and 28 more

Timeline

  • Aug 9, 2022 CVE Published
  • Jun 1, 2023 EPSS Score
  • Jul 7, 2023 EPSS Score
  • Sep 15, 2023 EPSS Score
  • Sep 17, 2023 EPSS Score
  • Oct 10, 2023 EPSS Score
  • Oct 23, 2023 EPSS Score
  • Nov 28, 2023 EPSS Score
  • Dec 6, 2023 EPSS Score
  • Jan 17, 2024 EPSS Score
  • Feb 8, 2024 EPSS Score
  • Feb 19, 2024 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›