VDB
CVE-2022-41128
CVE-2022-41128
PUBLISHED
KEV
De multiples vulnérabilités ont été corrigées dans <span class="textit">Microsoft Windows</span>. Elles permettent à un attaquant de provoquer une exécution de code à distance, une élévation de privilèges, un contournement de la fonctionnalité de sécurité, une atteinte à la confidentialité des données et un déni de service.
EPSS 39.24% · 97.4th percentile
Risk Scores
EPSS Score
39.24%
97.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| AMD | AMD Processors | Processor various |
| Microsoft | Windows |
Exploit Intelligence
- https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)
- FEDORA-2022-53a4a5dd11 (circl)
- FEDORA-2022-9f51d13fa3 (circl)
- https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1040 (circl)
- DSA-5378 (circl)
- https://security.gentoo.org/glsa/202402-07 (circl)
- [oss-security] 20221110 Xen Security Advisory 422 v2 (CVE-2022-23824) - x86: Multiple speculative security issues (circl)
- JScript9 remote code execution (Microsoft Internet Explorer) (gpz)
- JScript9 remote code execution (Microsoft Internet Explorer) (gpz)
- JScript9 remote code execution (Microsoft Internet Explorer) (gpz)
…and 20 more exploits
Timeline
- Nov 8, 2022 CISA KEV Added
- Nov 8, 2022 PoC Published
- Nov 8, 2022 CVE Published
- Nov 10, 2022 EPSS Score
- Dec 7, 2022 PoC Published
- Mar 3, 2023 EPSS Score
- Mar 29, 2023 EPSS Score
- May 2, 2023 EPSS Score
- May 17, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Aug 13, 2023 EPSS Score
- Sep 5, 2023 EPSS Score
References
- https://msrc.microsoft.com/update-guide/ advisory
- https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1040 url
- [oss-security] 20221110 Xen Security Advisory 422 v2 (CVE-2022-23824) - x86: Multiple speculative security issues mailing-list
- FEDORA-2022-9f51d13fa3 vendor-advisory
- FEDORA-2022-53a4a5dd11 vendor-advisory
- DSA-5378 vendor-advisory
- https://security.gentoo.org/glsa/202402-07 url