VDB

CVE-2022-41091

CVE-2022-41091 PUBLISHED KEV CVSS 5.400000095367432 MEDIUM

Windows Mark of the Web Security Feature Bypass Vulnerability

EPSS 6.34% · 91.2th percentile

Risk Scores

CVSS 3.1
5.400000095367432
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C
EPSS Score
6.34%
91.2th percentile

Affected Products

VendorProductVersions
microsoftwindows_10_21H110.0.0
microsoftwindows_10_21h20, 0, 0
microsoftwindows_10_18090, 10.0.0, 10.0.17763.0
microsoftwindows_10_21h10, 0, 0
microsoftwindows_server_20160, 0, 0
microsoftwindows_10_15070, 0, 0
MicrosoftWindows Server 2016 (Server Core installation)10.0.14393.0
microsoftwindows_10_22H210.0.19045.0
MicrosoftWindows 11 version 22H210.0.22621.0
MicrosoftWindows 10 Version 160710.0.14393.0
microsoftwindows_10_20H210.0.0
MicrosoftWindows Server 201610.0.14393.0
microsoftwindows_11_22h20, 0, 0
microsoftwindows_server_20190, 10.0.17763.0, 10.0.17763.0
microsoftwindows_11_22H210.0.22621.0
MicrosoftWindows 10 Version 21H210.0.19043.0
MicrosoftWindows Server 202210.0.20348.0
MicrosoftWindows Server 201910.0.17763.0
MicrosoftWindows 10 Version 180910.0.17763.0, 10.0.0
microsoftwindows_11_21H210.0.0

…and 12 more

Timeline

  • Nov 8, 2022 CISA KEV Added
  • Nov 8, 2022 VulnCheck KEV Exploitation
  • Nov 8, 2022 CVE Published
  • Nov 9, 2022 PoC Published
  • Nov 10, 2022 EPSS Score
  • Dec 7, 2022 PoC Published
  • Dec 23, 2022 EPSS Score
  • Jan 31, 2023 VulnCheck KEV Exploitation
  • Feb 14, 2023 VulnCheck KEV Exploitation
  • Mar 2, 2023 VulnCheck KEV Exploitation
  • Mar 3, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›