Vulnerability CVE-2022-22014

Vulnerability CVE-2022-22014

Published: 2022-05-10

Description:

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Type:

NVD-CWE-noinfo

CVSS2 => (AV:N/AC:L/Au:S/C:P/I:P/A:P)

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.5/10	6.4/10	8/10

Exploit range	Attack complexity	Authentication
Remote	Low	Single time
Confidentiality impact	Integrity impact	Availability impact
Partial	Partial	Partial

Affected software
Microsoft -> Windows 10
Microsoft -> Windows server 2008
Microsoft -> Windows 7
Microsoft -> Windows server 2012
Microsoft -> Windows server 2016
Microsoft -> Windows 11
Microsoft -> Windows server 2019
Microsoft -> Windows 8.1
Microsoft -> Windows server

References:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-22014

Copyright 2024, cxsecurity.com