{"count":594,"cpe":"cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:*:*","cves":[{"cve_id":"CVE-2025-55526","summary":"n8n-workflows Main Commit ee25413 allows attackers to execute a directory traversal via the download_workflow function within api_server.py","cvss":9.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":9.1,"cvss_v4":null,"epss":0.0101,"ranking_epss":0.7752,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://github.com/Zie619/n8n-workflows/issues/48"],"vendor":null,"product":null,"version":null,"published_time":"2025-08-26T14:15:41","euvd":{"id":"EUVD-2025-25785","description":"n8n-workflows Main Commit ee25413 allows attackers to execute a directory traversal via the download_workflow function within api_server.py","published_time":"2025-08-26T00:00:00","cvss":9.1,"cvss_version":"3.1","epss":0.0101,"assigner":"mitre","references":["https://github.com/Zie619/n8n-workflows/issues/48"],"products":["n/a"],"vendors":["n/a"]}},{"cve_id":"CVE-2024-7553","summary":"Incorrect validation of files loaded from a local untrusted directory may allow local privilege escalation if the underlying operating systems is Windows. This may result in the application executing arbitrary behaviour determined by the contents of untrusted files. This issue affects MongoDB Server v5.0 versions prior to 5.0.27, MongoDB Server v6.0 versions prior to 6.0.16, MongoDB Server v7.0 versions prior to 7.0.12, MongoDB Server v7.3 versions prior 7.3.3, MongoDB C Driver versions prior to 1.26.2 and MongoDB PHP Driver versions prior to 1.18.1.\n\nRequired Configuration:\n\nOnly environments with Windows as the underlying operating system is affected by this issue","cvss":7.3,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.3,"cvss_v4":null,"epss":0.00223,"ranking_epss":0.4503,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://jira.mongodb.org/browse/CDRIVER-5650","https://jira.mongodb.org/browse/PHPC-2369","https://jira.mongodb.org/browse/SERVER-93211"],"vendor":null,"product":null,"version":null,"published_time":"2024-08-07T10:15:39","euvd":{"id":"EUVD-2024-48459","description":"Incorrect validation of files loaded from a local untrusted directory may allow local privilege escalation if the underlying operating systems is Windows. This may result in the application executing arbitrary behaviour determined by the contents of untrusted files. This issue affects MongoDB Server v5.0 versions prior to 5.0.27, MongoDB Server v6.0 versions prior to 6.0.16, MongoDB Server v7.0 versions prior to 7.0.12, MongoDB Server v7.3 versions prior 7.3.3, MongoDB C Driver versions prior to 1.26.2 and MongoDB PHP Driver versions prior to 1.18.1.\n\nRequired Configuration:\n\nOnly environments with Windows as the underlying operating system is affected by this issue","published_time":"2024-08-07T09:57:49","cvss":7.3,"cvss_version":"3.1","epss":0.0022,"assigner":"mongodb","references":["https://jira.mongodb.org/browse/PHPC-2369","https://jira.mongodb.org/browse/SERVER-93211","https://jira.mongodb.org/browse/CDRIVER-5650"],"products":["MongoDB PHP Driver","MongoDB Server","MongoDB Server","MongoDB Server","MongoDB Server","MongoDB C Driver"],"vendors":["MongoDB Inc"]}},{"cve_id":"CVE-2023-44216","summary":"PVRIC (PowerVR Image Compression) on Imagination 2018 and later GPU devices offers software-transparent compression that enables cross-origin pixel-stealing attacks against feTurbulence and feBlend in the SVG Filter specification, aka a GPU.zip issue. For example, attackers can sometimes accurately determine text contained on a web page from one origin if they control a resource from a different origin.","cvss":5.3,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.3,"cvss_v4":null,"epss":0.00494,"ranking_epss":0.66186,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://arstechnica.com/security/2023/09/gpus-from-all-major-suppliers-are-vulnerable-to-new-pixel-stealing-attack/","https://blog.imaginationtech.com/introducing-pvric4-taking-image-compression-to-the-next-level/","https://blog.imaginationtech.com/reducing-bandwidth-pvric/","https://github.com/UT-Security/gpu-zip","https://news.ycombinator.com/item?id=37663159","https://www.bleepingcomputer.com/news/security/modern-gpus-vulnerable-to-new-gpuzip-side-channel-attack/","https://www.hertzbleed.com/gpu.zip/","https://www.hertzbleed.com/gpu.zip/GPU-zip.pdf","https://www.w3.org/TR/filter-effects-1/","https://arstechnica.com/security/2023/09/gpus-from-all-major-suppliers-are-vulnerable-to-new-pixel-stealing-attack/","https://blog.imaginationtech.com/introducing-pvric4-taking-image-compression-to-the-next-level/","https://blog.imaginationtech.com/reducing-bandwidth-pvric/","https://github.com/UT-Security/gpu-zip","https://news.ycombinator.com/item?id=37663159","https://www.bleepingcomputer.com/news/security/modern-gpus-vulnerable-to-new-gpuzip-side-channel-attack/","https://www.hertzbleed.com/gpu.zip/","https://www.hertzbleed.com/gpu.zip/GPU-zip.pdf","https://www.w3.org/TR/filter-effects-1/"],"vendor":null,"product":null,"version":null,"published_time":"2023-09-27T15:19:39","euvd":{"id":"EUVD-2023-48575","description":"PVRIC (PowerVR Image Compression) on Imagination 2018 and later GPU devices offers software-transparent compression that enables cross-origin pixel-stealing attacks against feTurbulence and feBlend in the SVG Filter specification, aka a GPU.zip issue. For example, attackers can sometimes accurately determine text contained on a web page from one origin if they control a resource from a different origin.","published_time":"2023-09-26T00:00:00","cvss":null,"cvss_version":null,"epss":0.0049,"assigner":"mitre","references":["https://www.hertzbleed.com/gpu.zip/","https://www.hertzbleed.com/gpu.zip/GPU-zip.pdf","https://github.com/UT-Security/gpu-zip","https://www.w3.org/TR/filter-effects-1/","https://blog.imaginationtech.com/reducing-bandwidth-pvric/","https://blog.imaginationtech.com/introducing-pvric4-taking-image-compression-to-the-next-level/","https://arstechnica.com/security/2023/09/gpus-from-all-major-suppliers-are-vulnerable-to-new-pixel-stealing-attack/","https://news.ycombinator.com/item?id=37663159","https://www.bleepingcomputer.com/news/security/modern-gpus-vulnerable-to-new-gpuzip-side-channel-attack/"],"products":["n/a"],"vendors":["n/a"]}},{"cve_id":"CVE-2023-20564","summary":"\n\n\n\n\n\n\nInsufficient validation in the IOCTL (Input Output Control) input buffer in AMD Ryzen™ Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of confidentiality or arbitrary kernel execution.\n\n\n\n\n\n\n\n\n\n\n\n","cvss":6.7,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.7,"cvss_v4":null,"epss":0.00104,"ranking_epss":0.27816,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7004","https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7004"],"vendor":null,"product":null,"version":null,"published_time":"2023-08-15T22:15:11","euvd":{"id":"EUVD-2023-24743","description":"\n\n\n\n\n\n\nInsufficient validation in the IOCTL (Input Output Control) input buffer in AMD Ryzen™ Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of confidentiality or arbitrary kernel execution.\n\n\n\n\n\n\n\n\n\n\n\n","published_time":"2023-08-15T21:07:49","cvss":null,"cvss_version":null,"epss":0.001,"assigner":"AMD","references":["https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7004"],"products":["Ryzen™ Master"],"vendors":["AMD"]}},{"cve_id":"CVE-2023-20560","summary":"\n\n\n\n\n\n\n\n\nInsufficient validation of the IOCTL (Input Output Control) input buffer in AMD Ryzen™ Master may allow a privileged attacker to provide a null value potentially resulting in a Windows crash leading to denial of service.\n\n\n\n\n\n\n\n\n\n\n","cvss":4.4,"cvss_version":3,"cvss_v2":null,"cvss_v3":4.4,"cvss_v4":null,"epss":0.00028,"ranking_epss":0.08406,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7004","https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7004"],"vendor":null,"product":null,"version":null,"published_time":"2023-08-15T22:15:09","euvd":{"id":"EUVD-2023-24739","description":"\n\n\n\n\n\n\n\n\nInsufficient validation of the IOCTL (Input Output Control) input buffer in AMD Ryzen™ Master may allow a privileged attacker to provide a null value potentially resulting in a Windows crash leading to denial of service.\n\n\n\n\n\n\n\n\n\n\n","published_time":"2023-08-15T21:08:47","cvss":null,"cvss_version":null,"epss":0.0003,"assigner":"AMD","references":["https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7004"],"products":["Ryzen™ Master"],"vendors":["AMD"]}},{"cve_id":"CVE-2023-29411","summary":"\nA CWE-306: Missing Authentication for Critical Function vulnerability exists that could allow\nchanges to administrative credentials, leading to potential remote code execution without\nrequiring prior authentication on the Java RMI interface. \n\n\n\n","cvss":9.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":9.8,"cvss_v4":null,"epss":0.07707,"ranking_epss":0.9211,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-04.pdf","https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-04.pdf"],"vendor":null,"product":null,"version":null,"published_time":"2023-04-18T21:15:09","euvd":{"id":"EUVD-2023-32980","description":"\nA CWE-306: Missing Authentication for Critical Function vulnerability exists that could allow\nchanges to administrative credentials, leading to potential remote code execution without\nrequiring prior authentication on the Java RMI interface. \n\n\n\n","published_time":"2023-04-18T20:49:34","cvss":9.8,"cvss_version":"3.1","epss":0.0771,"assigner":"schneider","references":["https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-04.pdf"],"products":["Schneider Electric Easy UPS Online Monitoring Software (Windows 10, 11 Windows Server 2016, 2019, 2022)","APC Easy UPS Online Monitoring Software (Windows 10, 11 Windows Server 2016, 2019, 2022)"],"vendors":["Schneider Electric"]}},{"cve_id":"CVE-2023-29412","summary":"CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command\nInjection') vulnerability exists that could cause remote code execution when manipulating\ninternal methods through Java RMI interface.","cvss":9.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":9.8,"cvss_v4":null,"epss":0.02539,"ranking_epss":0.8578,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-04.pdf","https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-04.pdf"],"vendor":null,"product":null,"version":null,"published_time":"2023-04-18T21:15:09","euvd":{"id":"EUVD-2023-32981","description":"CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command\nInjection') vulnerability exists that could cause remote code execution when manipulating\ninternal methods through Java RMI interface.","published_time":"2023-04-18T20:50:08","cvss":9.8,"cvss_version":"3.1","epss":0.0254,"assigner":"schneider","references":["https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-04.pdf"],"products":["Schneider Electric Easy UPS Online Monitoring Software (Windows 10, 11 Windows Server 2016, 2019, 2022)","APC Easy UPS Online Monitoring Software (Windows 10, 11 Windows Server 2016, 2019, 2022)"],"vendors":["Schneider Electric"]}},{"cve_id":"CVE-2023-29413","summary":"\nA CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause\nDenial-of-Service when accessed by an unauthenticated user on the Schneider UPS Monitor\nservice. \n\n \n\n\n\n","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.00446,"ranking_epss":0.63906,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-04.pdf","https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-04.pdf"],"vendor":null,"product":null,"version":null,"published_time":"2023-04-18T21:15:09","euvd":{"id":"EUVD-2023-32982","description":"\nA CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause\nDenial-of-Service when accessed by an unauthenticated user on the Schneider UPS Monitor\nservice. \n\n \n\n\n\n","published_time":"2023-04-18T20:50:53","cvss":7.5,"cvss_version":"3.1","epss":0.0045,"assigner":"schneider","references":["https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-101-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-101-04.pdf"],"products":["APC Easy UPS Online Monitoring Software (Windows 10, 11 Windows Server 2016, 2019, 2022)","Schneider Electric Easy UPS Online Monitoring Software (Windows 10, 11 Windows Server 2016, 2019, 2022)"],"vendors":["Schneider Electric"]}},{"cve_id":"CVE-2022-42972","summary":"A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could cause local privilege escalation when a local attacker modifies the webroot directory. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA), APC Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GA-01-22261), Schneider Electric Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GS), Schneider Electric Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GS-01-22261)","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00038,"ranking_epss":0.1161,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf","https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf"],"vendor":null,"product":null,"version":null,"published_time":"2023-02-01T04:15:09","euvd":{"id":"EUVD-2022-46022","description":"A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could cause local privilege escalation when a local attacker modifies the webroot directory. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA), APC Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GA-01-22261), Schneider Electric Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GS), Schneider Electric Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GS-01-22261)","published_time":"2023-02-01T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0004,"assigner":"schneider","references":["https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf"],"products":["Schneider Electric Easy UPS Online Monitoring Software","APC Easy UPS Online Monitoring Software","APC Easy UPS Online Monitoring Software","Schneider Electric Easy UPS Online Monitoring Software"],"vendors":["Schneider Electric"]}},{"cve_id":"CVE-2022-42973","summary":"A CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause local privilege escalation when local attacker connects to the database. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA), APC Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GA-01-22261), Schneider Electric Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GS), Schneider Electric Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GS-01-22261)","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00038,"ranking_epss":0.1161,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf","https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf"],"vendor":null,"product":null,"version":null,"published_time":"2023-02-01T04:15:09","euvd":{"id":"EUVD-2022-46023","description":"A CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause local privilege escalation when local attacker connects to the database. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA), APC Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GA-01-22261), Schneider Electric Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GS), Schneider Electric Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GS-01-22261)","published_time":"2023-02-01T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0004,"assigner":"schneider","references":["https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf"],"products":["APC Easy UPS Online Monitoring Software","APC Easy UPS Online Monitoring Software","Schneider Electric Easy UPS Online Monitoring Software","Schneider Electric Easy UPS Online Monitoring Software"],"vendors":["Schneider Electric"]}},{"cve_id":"CVE-2022-42970","summary":"A CWE-306: Missing Authentication for Critical Function The software does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA), APC Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GA-01-22261), Schneider Electric Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GS), Schneider Electric Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GS-01-22261)","cvss":9.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":9.8,"cvss_v4":null,"epss":0.00659,"ranking_epss":0.71565,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf","https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf"],"vendor":null,"product":null,"version":null,"published_time":"2023-02-01T04:15:08","euvd":{"id":"EUVD-2022-46020","description":"A CWE-306: Missing Authentication for Critical Function The software does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA), APC Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GA-01-22261), Schneider Electric Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GS), Schneider Electric Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GS-01-22261)","published_time":"2023-02-01T00:00:00","cvss":9.8,"cvss_version":"3.1","epss":0.0066,"assigner":"schneider","references":["https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf"],"products":["APC Easy UPS Online Monitoring Software","Schneider Electric Easy UPS Online Monitoring Software","APC Easy UPS Online Monitoring Software","Schneider Electric Easy UPS Online Monitoring Software"],"vendors":["Schneider Electric"]}},{"cve_id":"CVE-2022-42971","summary":"A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could cause remote code execution when the attacker uploads a malicious JSP file. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA), APC Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GA-01-22261), Schneider Electric Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GS), Schneider Electric Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GS-01-22261)","cvss":9.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":9.8,"cvss_v4":null,"epss":0.0258,"ranking_epss":0.85892,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf","https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf"],"vendor":null,"product":null,"version":null,"published_time":"2023-02-01T04:15:08","euvd":{"id":"EUVD-2022-46021","description":"A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could cause remote code execution when the attacker uploads a malicious JSP file. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA), APC Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GA-01-22261), Schneider Electric Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GS), Schneider Electric Easy UPS Online Monitoring Software (Windows 11, Windows Server 2019, 2022 - Versions prior to V2.5-GS-01-22261)","published_time":"2023-02-01T00:00:00","cvss":9.8,"cvss_version":"3.1","epss":0.0258,"assigner":"schneider","references":["https://download.schneider-electric.com/files?p_Doc_SEVD-2022-347-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-347-01_Easy_UPS_Online_Monitoring_Software_Security_Notification.pdf"],"products":["Schneider Electric Easy UPS Online Monitoring Software","APC Easy UPS Online Monitoring Software","Schneider Electric Easy UPS Online Monitoring Software","APC Easy UPS Online Monitoring Software"],"vendors":["Schneider Electric"]}},{"cve_id":"CVE-2023-21765","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02036,"ranking_epss":0.8419,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21765","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21765"],"vendor":null,"product":null,"version":null,"published_time":"2023-01-10T22:15:19","euvd":{"id":"EUVD-2023-25932","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2023-01-10T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0204,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21765"],"products":["Windows 10 Version 22H2","Windows Server 2012 R2","Windows 8.1","Windows 11 version 22H2","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows Server 2022","Windows Server 2012","Windows 10 Version 1507","Windows Server 2016","Windows 7","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2023-21766","summary":"Windows Overlay Filter Information Disclosure Vulnerability","cvss":4.7,"cvss_version":3,"cvss_v2":null,"cvss_v3":4.7,"cvss_v4":null,"epss":0.0644,"ranking_epss":0.91266,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21766","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21766"],"vendor":null,"product":null,"version":null,"published_time":"2023-01-10T22:15:19","euvd":{"id":"EUVD-2023-25933","description":"Windows Overlay Filter Information Disclosure Vulnerability","published_time":"2023-01-10T00:00:00","cvss":4.7,"cvss_version":"3.1","epss":0.0644,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21766"],"products":["Windows 11 version 22H2","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 22H2","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2023-21767","summary":"Windows Overlay Filter Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0083,"ranking_epss":0.74984,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21767","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21767"],"vendor":null,"product":null,"version":null,"published_time":"2023-01-10T22:15:19","euvd":{"id":"EUVD-2023-25934","description":"Windows Overlay Filter Elevation of Privilege Vulnerability","published_time":"2023-01-10T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0083,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21767"],"products":["Windows 10 Version 20H2","Windows 8.1","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 1507","Windows 10 Version 1809","Windows 11 version 22H2","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows 10 Version 22H2","Windows 10 Version 1607","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2023-21746","summary":"Windows NTLM Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.53737,"ranking_epss":0.98048,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21746","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21746"],"vendor":null,"product":null,"version":null,"published_time":"2023-01-10T22:15:18","euvd":{"id":"EUVD-2023-25913","description":"Windows NTLM Elevation of Privilege Vulnerability","published_time":"2023-01-10T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.5374,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21746"],"products":["Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1607","Windows 11 version 22H2","Windows Server 2019","Windows 7 Service Pack 1","Windows Server 2012","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 22H2","Windows Server 2022","Windows 11 version 21H2","Windows 8.1","Windows 7","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2023-21752","summary":"Windows Backup Service Elevation of Privilege Vulnerability","cvss":7.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.1,"cvss_v4":null,"epss":0.37929,"ranking_epss":0.97311,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21752","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21752"],"vendor":null,"product":null,"version":null,"published_time":"2023-01-10T22:15:18","euvd":{"id":"EUVD-2023-25919","description":"Windows Backup Service Elevation of Privilege Vulnerability","published_time":"2023-01-10T00:00:00","cvss":7.1,"cvss_version":"3.1","epss":0.3793,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21752"],"products":["Windows 10 Version 22H2","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 1507","Windows 11 version 22H2","Windows 10 Version 1607","Windows 10 Version 1809","Windows 7","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2023-21757","summary":"Windows Layer 2 Tunneling Protocol (L2TP) Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.19112,"ranking_epss":0.9549,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21757","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21757"],"vendor":null,"product":null,"version":null,"published_time":"2023-01-10T22:15:18","euvd":{"id":"EUVD-2023-25924","description":"Windows Layer 2 Tunneling Protocol (L2TP) Denial of Service Vulnerability","published_time":"2023-01-10T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.1911,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21757"],"products":["Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows Server 2022","Windows Server 2012","Windows 11 version 22H2","Windows Server 2012 R2","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7","Windows Server 2019","Windows 10 Version 22H2","Windows 10 Version 1507","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2023-21758","summary":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.4276,"ranking_epss":0.97561,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21758","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21758"],"vendor":null,"product":null,"version":null,"published_time":"2023-01-10T22:15:18","euvd":{"id":"EUVD-2023-25925","description":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","published_time":"2023-01-10T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.4276,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21758"],"products":["Windows 10 Version 21H2","Windows 10 Version 1507","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 22H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 11 version 22H2","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2023-21760","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.1,"cvss_v4":null,"epss":0.0085,"ranking_epss":0.75321,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21760","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21760"],"vendor":null,"product":null,"version":null,"published_time":"2023-01-10T22:15:18","euvd":{"id":"EUVD-2023-25927","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2023-01-10T00:00:00","cvss":7.1,"cvss_version":"3.1","epss":0.0085,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21760"],"products":["Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows 11 version 22H2","Windows 10 Version 1809","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012","Windows 8.1","Windows 7 Service Pack 1","Windows 11 version 21H2","Windows 10 Version 22H2","Windows 7","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows 10 Version 21H2","Windows Server 2008  Service Pack 2","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2023-21558","summary":"Windows Error Reporting Service Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00622,"ranking_epss":0.70585,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21558","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21558"],"vendor":null,"product":null,"version":null,"published_time":"2023-01-10T22:15:15","euvd":{"id":"EUVD-2023-25725","description":"Windows Error Reporting Service Elevation of Privilege Vulnerability","published_time":"2023-01-10T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0062,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21558"],"products":["Windows 8.1","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows 11 version 22H2","Windows Server 2012","Windows 10 Version 21H2","Windows Server 2016","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 1507","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 22H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44697","summary":"Windows Graphics Component Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00895,"ranking_epss":0.76048,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44697","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44697"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:14","euvd":{"id":"EUVD-2022-47631","description":"Windows Graphics Component Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.009,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44697"],"products":["Windows Server 2016","Windows 11 version 22H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2022","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2012","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809","Windows 8.1","Windows 7","Windows 10 Version 21H2","Windows 10 Version 22H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44702","summary":"Windows Terminal Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.07107,"ranking_epss":0.91726,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44702","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-44702"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:14","euvd":{"id":"EUVD-2022-47636","description":"Windows Terminal Remote Code Execution Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0711,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44702"],"products":["Windows Terminal for Windows 10","Windows Terminal for Windows 11"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44707","summary":"Windows Kernel Denial of Service Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.5,"cvss_v4":null,"epss":0.10709,"ranking_epss":0.93489,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44707","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44707"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:14","euvd":{"id":"EUVD-2022-47641","description":"Windows Kernel Denial of Service Vulnerability","published_time":"2022-12-13T00:00:00","cvss":6.5,"cvss_version":"3.1","epss":0.1071,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44707"],"products":["Windows 11 version 21H2","Windows Server 2022","Windows 8.1","Windows 10 Version 1607","Windows Server 2019","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 22H2","Windows 10 Version 21H1","Windows 10 Version 1507","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2016","Windows 11 version 22H2","Windows 10 Version 21H2","Windows Server 2012","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44674","summary":"Windows Bluetooth Driver Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00547,"ranking_epss":0.68317,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44674","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44674"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47608","description":"Windows Bluetooth Driver Information Disclosure Vulnerability","published_time":"2022-12-13T00:00:00","cvss":5.5,"cvss_version":"3.1","epss":0.0055,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44674"],"products":["Windows 10 Version 20H2","Windows 11 version 22H2","Windows 10 Version 22H2","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2019","Windows 11 version 21H2","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44675","summary":"Windows Bluetooth Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.04058,"ranking_epss":0.88785,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44675","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44675"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47609","description":"Windows Bluetooth Driver Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0406,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44675"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019","Windows Server 2022","Windows 10 Version 1507","Windows Server 2012 R2","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 7","Windows 11 version 21H2","Windows 10 Version 22H2","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 8.1","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows 11 version 22H2","Windows 10 Version 21H2","Windows Server 2012","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44676","summary":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.00596,"ranking_epss":0.69816,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44676","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44676"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47610","description":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","published_time":"2022-12-13T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.006,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44676"],"products":["Windows Server 2012 R2","Windows 10 Version 21H2","Windows 10 Version 21H2","Windows Server 2012","Windows 7","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 22H2","Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 11 version 22H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44677","summary":"Windows Projected File System Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0118,"ranking_epss":0.79162,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44677","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44677"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47611","description":"Windows Projected File System Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0118,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44677"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 11 version 22H2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2022","Windows 10 Version 22H2","Windows 11 version 21H2","Windows 10 Version 21H1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44678","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01186,"ranking_epss":0.79209,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44678","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44678"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47612","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0119,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44678"],"products":["Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 22H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2012","Windows 11 version 21H2","Windows Server 2016","Windows Server 2012 R2","Windows 11 version 22H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows 7 Service Pack 1","Windows 7","Windows 10 Version 1507","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2","Windows Server 2019","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 21H2","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44679","summary":"Windows Graphics Component Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.5,"cvss_v4":null,"epss":0.00761,"ranking_epss":0.73801,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44679","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44679"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47613","description":"Windows Graphics Component Information Disclosure Vulnerability","published_time":"2022-12-13T00:00:00","cvss":6.5,"cvss_version":"3.1","epss":0.0076,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44679"],"products":["Windows 10 Version 1809","Windows Server 2012","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 22H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 11 version 22H2","Windows Server 2012 R2","Windows 8.1","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44680","summary":"Windows Graphics Component Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0118,"ranking_epss":0.79162,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44680","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44680"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47614","description":"Windows Graphics Component Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0118,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44680"],"products":["Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 22H2","Windows Server 2012","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 1507","Windows 10 Version 21H2","Windows 11 version 22H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1607","Windows 8.1","Windows Server 2016","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44681","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01215,"ranking_epss":0.79421,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44681","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44681"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47615","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0122,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44681"],"products":["Windows 7 Service Pack 1","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2022","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 22H2","Windows Server 2016","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 22H2","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44682","summary":"Windows Hyper-V Denial of Service Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.8,"cvss_v4":null,"epss":0.00669,"ranking_epss":0.71794,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44682","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44682"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47616","description":"Windows Hyper-V Denial of Service Vulnerability","published_time":"2022-12-13T00:00:00","cvss":6.8,"cvss_version":"3.1","epss":0.0067,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44682"],"products":["Windows 8.1","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 10 Version 1607","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2022","Windows Server 2012","Windows Server 2019","Windows 10 Version 22H2","Windows Server 2016 (Server Core installation)","Windows 11 version 22H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44683","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02795,"ranking_epss":0.86419,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44683","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44683"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47617","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.028,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44683"],"products":["Windows 8.1","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 22H2","Windows Server 2012","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows Server 2012 R2","Windows 10 Version 21H2","Windows 11 version 22H2","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44687","summary":"Raw Image Extension Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01668,"ranking_epss":0.82507,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44687","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44687"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47621","description":"Raw Image Extension Remote Code Execution Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0167,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44687"],"products":["Raw Image Extension"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44689","summary":"Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01929,"ranking_epss":0.83773,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44689","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-44689"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:13","euvd":{"id":"EUVD-2022-47623","description":"Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0193,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44689"],"products":["Windows Server 2019","Windows 10 Version 20H2","Windows 10 Version 22H2","Windows 11 version 22H2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Subsystem for Linux (WSL2)","Windows 10 Version 21H2","Windows Server 2022","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41077","summary":"Windows Fax Compose Form Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00895,"ranking_epss":0.76048,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41077","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41077"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:12","euvd":{"id":"EUVD-2022-44321","description":"Windows Fax Compose Form Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.009,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41077"],"products":["Windows 11 version 22H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows 11 version 21H2","Windows Server 2008  Service Pack 2","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 7","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows Server 2012","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2012 R2","Windows 8.1","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 22H2","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41089","summary":".NET Framework Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.04555,"ranking_epss":0.89435,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41089","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41089"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:12","euvd":{"id":"EUVD-2022-7473","description":".NET Framework Remote Code Execution Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0455,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41089"],"products":["Microsoft Visual Studio 2022 version 17.0","Microsoft .NET Framework 3.5 AND 4.7.2","Microsoft Visual Studio 2022 version 17.4","Microsoft .NET Framework 3.5",".NET Core 3.1","Microsoft .NET Framework 2.0 Service Pack 2","Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2","Microsoft .NET Framework 4.6.2","Microsoft .NET Framework 3.5 AND 4.8","PowerShell 7.2","Microsoft Visual Studio 2022 version 17.2","PowerShell 7.3","Microsoft .NET Framework 3.0 Service Pack 2","Microsoft .NET Framework 4.8","Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",".NET 6.0","Microsoft .NET Framework 3.5 AND 4.6/4.6.2","Microsoft .NET Framework 3.5.1",".NET 7.0","Microsoft .NET Framework 3.5 AND 4.8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41094","summary":"Windows Hyper-V Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00895,"ranking_epss":0.76048,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41094","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41094"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:12","euvd":{"id":"EUVD-2022-44337","description":"Windows Hyper-V Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.009,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41094"],"products":["Windows Server 2016","Windows Server 2012","Windows 10 Version 22H2","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows 11 version 22H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41121","summary":"Windows Graphics Component Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00534,"ranking_epss":0.67843,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41121","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41121"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:12","euvd":{"id":"EUVD-2022-44364","description":"Windows Graphics Component Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0053,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41121"],"products":["Windows Server 2008 R2 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows 11 version 22H2","Windows Server 2019","Windows 10 Version 21H1","Windows 7","Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows 10 Version 22H2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 8.1","Windows 10 Version 1809","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44666","summary":"Windows Contacts Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.54911,"ranking_epss":0.98092,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44666","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44666"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:12","euvd":{"id":"EUVD-2022-47600","description":"Windows Contacts Remote Code Execution Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.5491,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44666"],"products":["Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows 7","Windows 10 Version 21H1","Windows 10 Version 22H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012","Windows 11 version 21H2","Windows 8.1","Windows 11 version 22H2","Windows Server 2019","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44667","summary":"Windows Media Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01697,"ranking_epss":0.82687,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44667","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44667"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:12","euvd":{"id":"EUVD-2022-47601","description":"Windows Media Remote Code Execution Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.017,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44667"],"products":["Windows 10 Version 21H2","Windows 10 Version 1607","Windows Server 2019","Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 11 version 22H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows 8.1","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 7","Windows 10 Version 22H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows Server 2016","Windows 10 Version 1507","Windows Server 2012","Windows 10 Version 21H1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44668","summary":"Windows Media Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01697,"ranking_epss":0.82687,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44668","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44668"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:12","euvd":{"id":"EUVD-2022-47602","description":"Windows Media Remote Code Execution Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.017,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44668"],"products":["Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2019","Windows 10 Version 22H2","Windows 10 Version 1607","Windows 7","Windows 11 version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 22H2","Windows 7 Service Pack 1","Windows Server 2012","Windows 8.1","Windows 10 Version 1507","Windows Server 2012 R2","Windows 10 Version 1809","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44669","summary":"Windows Error Reporting Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":null,"cvss_v3":7,"cvss_v4":null,"epss":0.003,"ranking_epss":0.53705,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44669","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44669"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:12","euvd":{"id":"EUVD-2022-47603","description":"Windows Error Reporting Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7,"cvss_version":"3.1","epss":0.003,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44669"],"products":["Windows 10 Version 21H1","Windows 10 Version 22H2","Windows 10 Version 20H2","Windows 11 version 21H2","Windows Server 2019","Windows Server 2022","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1809","Windows 11 version 22H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44670","summary":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.0079,"ranking_epss":0.74324,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44670","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44670"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:12","euvd":{"id":"EUVD-2022-47604","description":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","published_time":"2022-12-13T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.0079,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44670"],"products":["Windows Server 2012 R2","Windows 7","Windows 10 Version 20H2","Windows 11 version 22H2","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows 11 version 21H2","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2016","Windows 10 Version 1607","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 22H2","Windows 8.1","Windows 10 Version 1809","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-44671","summary":"Windows Graphics Component Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01488,"ranking_epss":0.81449,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44671","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44671"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:12","euvd":{"id":"EUVD-2022-47605","description":"Windows Graphics Component Elevation of Privilege Vulnerability","published_time":"2022-12-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0149,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44671"],"products":["Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 22H2","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 11 version 22H2","Windows Server 2019","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41074","summary":"Windows Graphics Component Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.04575,"ranking_epss":0.89453,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41074","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41074"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:11","euvd":{"id":"EUVD-2022-44318","description":"Windows Graphics Component Information Disclosure Vulnerability","published_time":"2022-12-13T00:00:00","cvss":5.5,"cvss_version":"3.1","epss":0.0457,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41074"],"products":["Windows 10 Version 21H1","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 22H2","Windows Server 2012","Windows Server 2016","Windows 7","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 22H2","Windows 8.1","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41076","summary":"PowerShell Remote Code Execution Vulnerability","cvss":8.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.5,"cvss_v4":null,"epss":0.34016,"ranking_epss":0.9708,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41076","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41076"],"vendor":null,"product":null,"version":null,"published_time":"2022-12-13T19:15:11","euvd":{"id":"EUVD-2022-44320","description":"PowerShell Remote Code Execution Vulnerability","published_time":"2022-12-13T00:00:00","cvss":8.5,"cvss_version":"3.1","epss":0.3402,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41076"],"products":["Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows Server 2012 R2","Windows Server 2008 Service Pack 2","Windows 10 Version 21H2","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server 2016","Windows 7","Windows 10 Version 20H2","PowerShell 7.3","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 11 version 22H2","Windows 7 Service Pack 1","PowerShell 7.2","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 22H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-33973","summary":"Improper access control in the Intel(R) WAPI Security software for Windows 10/11 before version 22.2150.0.1 may allow an authenticated user to potentially enable information disclosure via local access.","cvss":3.3,"cvss_version":3,"cvss_v2":null,"cvss_v3":3.3,"cvss_v4":null,"epss":0.00058,"ranking_epss":0.18342,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00720.html","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00720.html"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-11T16:15:15","euvd":{"id":"EUVD-2022-37009","description":"Improper access control in the Intel(R) WAPI Security software for Windows 10/11 before version 22.2150.0.1 may allow an authenticated user to potentially enable information disclosure via local access.","published_time":"2022-11-11T15:49:13","cvss":3.3,"cvss_version":"3.1","epss":0.0006,"assigner":"intel","references":["https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00720.html"],"products":["Intel(R) WAPI Security software for Windows 10/11"],"vendors":["n/a"]}},{"cve_id":"CVE-2022-41109","summary":"Windows Win32k Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01159,"ranking_epss":0.78991,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41109","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41109"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:24","euvd":{"id":"EUVD-2022-44352","description":"Windows Win32k Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0116,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41109"],"products":["Windows 10 Version 22H2","Windows 10 Version 21H1","Windows 10 Version 1607","Windows 10 Version 1809","Windows 7","Windows Server 2022","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows 11 version 22H2","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2012","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows 8.1","Windows Server 2019","Windows Server 2012 R2","Windows Server 2016","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41113","summary":"Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.03302,"ranking_epss":0.87512,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41113","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41113"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:24","euvd":{"id":"EUVD-2022-44356","description":"Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.033,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41113"],"products":["Windows 10 Version 22H2","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2022","Windows 11 version 22H2","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41114","summary":"Windows Bind Filter Driver Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":null,"cvss_v3":7,"cvss_v4":null,"epss":0.00591,"ranking_epss":0.69703,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41114","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41114"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:24","euvd":{"id":"EUVD-2022-44357","description":"Windows Bind Filter Driver Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7,"cvss_version":"3.1","epss":0.0059,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41114"],"products":["Windows 10 Version 20H2","Windows 11 version 22H2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 22H2","Windows Server 2022","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41118","summary":"Windows Scripting Languages Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.0066,"ranking_epss":0.71584,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41118","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41118"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:24","euvd":{"id":"EUVD-2022-44361","description":"Windows Scripting Languages Remote Code Execution Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.0066,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41118"],"products":["Windows Server 2012 R2","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 8.1","Windows 11 version 22H2","Windows Server 2016","Windows 10 Version 22H2","Windows Server 2022","Windows 7","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41100","summary":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00256,"ranking_epss":0.49331,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41100","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41100"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:23","euvd":{"id":"EUVD-2022-44343","description":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0026,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41100"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 11 version 22H2","Windows 8.1","Windows Server 2012 R2","Windows 11 version 21H2","Windows 10 Version 22H2","Windows Server 2019","Windows Server 2016","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41101","summary":"Windows Overlay Filter Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01014,"ranking_epss":0.77575,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41101","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41101"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:23","euvd":{"id":"EUVD-2022-44344","description":"Windows Overlay Filter Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0101,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41101"],"products":["Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 22H2","Windows 11 version 22H2","Windows 10 Version 1809","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 1607","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41102","summary":"Windows Overlay Filter Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01014,"ranking_epss":0.77575,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41102","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41102"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:23","euvd":{"id":"EUVD-2022-44345","description":"Windows Overlay Filter Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0101,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41102"],"products":["Windows 10 Version 1809","Windows 10 Version 20H2","Windows 11 version 22H2","Windows 10 Version 22H2","Windows Server 2022","Windows 10 Version 1607","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1809","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41092","summary":"Windows Win32k Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01029,"ranking_epss":0.77731,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41092","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41092"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:22","euvd":{"id":"EUVD-2022-44335","description":"Windows Win32k Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0103,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41092"],"products":["Windows 10 Version 22H2","Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows 11 version 22H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41093","summary":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00241,"ranking_epss":0.47637,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41093","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41093"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:22","euvd":{"id":"EUVD-2022-44336","description":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0024,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41093"],"products":["Windows Server 2016 (Server Core installation)","Windows 10 Version 22H2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H2","Windows 10 Version 1507","Windows 10 Version 20H2","Windows Server 2022","Windows 11 version 22H2","Windows Server 2012 R2","Windows 8.1","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41095","summary":"Windows Digital Media Receiver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00895,"ranking_epss":0.76048,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41095","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41095"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:22","euvd":{"id":"EUVD-2022-44338","description":"Windows Digital Media Receiver Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.009,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41095"],"products":["Windows Server 2016","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows Server 2012 R2","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2008  Service Pack 2","Windows 10 Version 22H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows 10 Version 21H2","Windows 7","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 11 version 22H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41096","summary":"Microsoft DWM Core Library Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0098,"ranking_epss":0.77193,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41096","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41096"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:22","euvd":{"id":"EUVD-2022-44339","description":"Microsoft DWM Core Library Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0098,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41096"],"products":["Windows Server 2022","Windows 11 version 22H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 10 Version 22H2","Windows 10 Version 1809","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41097","summary":"Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.5,"cvss_v4":null,"epss":0.24013,"ranking_epss":0.96162,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41097","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41097"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:22","euvd":{"id":"EUVD-2022-44340","description":"Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability","published_time":"2022-11-09T00:00:00","cvss":6.5,"cvss_version":"3.1","epss":0.2401,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41097"],"products":["Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows Server 2019","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 22H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows Server 2022","Windows 10 Version 21H1","Windows 11 version 22H2","Windows 8.1","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows 7","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41098","summary":"Windows GDI+ Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.01561,"ranking_epss":0.81892,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41098","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41098"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:22","euvd":{"id":"EUVD-2022-44341","description":"Windows GDI+ Information Disclosure Vulnerability","published_time":"2022-11-09T00:00:00","cvss":5.5,"cvss_version":"3.1","epss":0.0156,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41098"],"products":["Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 8.1","Windows 7","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows 10 Version 1507","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server 2019","Windows 11 version 22H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 22H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41099","summary":"BitLocker Security Feature Bypass Vulnerability","cvss":4.6,"cvss_version":3,"cvss_v2":null,"cvss_v3":4.6,"cvss_v4":null,"epss":0.02515,"ranking_epss":0.85724,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41099","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41099"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:22","euvd":{"id":"EUVD-2022-44342","description":"BitLocker Security Feature Bypass Vulnerability","published_time":"2022-11-09T00:00:00","cvss":4.6,"cvss_version":"3.1","epss":0.0251,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41099"],"products":["Windows 10 Version 22H2","Windows 10 Version 21H2","Windows 11 version 22H2","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 10 Version 1507","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41086","summary":"Windows Group Policy Elevation of Privilege Vulnerability","cvss":6.4,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.4,"cvss_v4":null,"epss":0.00269,"ranking_epss":0.5065,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41086","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41086"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:21","euvd":{"id":"EUVD-2022-44330","description":"Windows Group Policy Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":6.4,"cvss_version":"3.1","epss":0.0027,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41086"],"products":["Windows 10 Version 1809","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 22H2","Windows 10 Version 1507","Windows 11 version 22H2","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows 10 Version 21H1","Windows Server 2016","Windows 8.1","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41088","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.00754,"ranking_epss":0.73671,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41088","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41088"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:21","euvd":{"id":"EUVD-2022-44332","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-11-09T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.0075,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41088"],"products":["Windows 10 Version 1507","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 8.1","Windows 10 Version 21H2","Windows Server 2012","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows 10 Version 22H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows Server 2019","Windows 11 version 22H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41090","summary":"Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability","cvss":5.9,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.9,"cvss_v4":null,"epss":0.01588,"ranking_epss":0.82042,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41090","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41090"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:21","euvd":{"id":"EUVD-2022-44333","description":"Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability","published_time":"2022-11-09T00:00:00","cvss":5.9,"cvss_version":"3.1","epss":0.0159,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41090"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 7","Windows 10 Version 1607","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019","Windows Server 2012 R2","Windows Server 2012","Windows 10 Version 22H2","Windows Server 2012 (Server Core installation)","Windows 11 version 22H2","Windows 8.1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows Server 2016","Windows 7 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41054","summary":"Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01014,"ranking_epss":0.77575,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41054","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41054"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:20","euvd":{"id":"EUVD-2022-44299","description":"Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0101,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41054"],"products":["Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H2","Windows 11 version 22H2","Windows 10 Version 22H2","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41055","summary":"Windows Human Interface Device Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.04757,"ranking_epss":0.89681,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41055","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41055"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:20","euvd":{"id":"EUVD-2022-44300","description":"Windows Human Interface Device Information Disclosure Vulnerability","published_time":"2022-11-09T00:00:00","cvss":5.5,"cvss_version":"3.1","epss":0.0476,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41055"],"products":["Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 22H2","Windows 10 Version 21H1","Windows Server 2019","Windows 10 Version 21H2","Windows 11 version 22H2","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41056","summary":"Network Policy Server (NPS) RADIUS Protocol Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.22911,"ranking_epss":0.96023,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41056","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41056"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:20","euvd":{"id":"EUVD-2022-44301","description":"Network Policy Server (NPS) RADIUS Protocol Denial of Service Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.2291,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41056"],"products":["Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 22H2","Windows 10 Version 1809","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 8.1","Windows Server 2022","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2012","Windows 7","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 11 version 22H2","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41057","summary":"Windows HTTP.sys Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01136,"ranking_epss":0.78793,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41057","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41057"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:20","euvd":{"id":"EUVD-2022-44302","description":"Windows HTTP.sys Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0114,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41057"],"products":["Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows 11 version 22H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 22H2","Windows Server 2012","Windows 10 Version 1809","Windows Server 2016","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 7","Windows Server 2012 R2","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41058","summary":"Windows Network Address Translation (NAT) Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.24873,"ranking_epss":0.96281,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41058","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41058"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:20","euvd":{"id":"EUVD-2022-44303","description":"Windows Network Address Translation (NAT) Denial of Service Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.2487,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41058"],"products":["Windows 10 Version 1507","Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 7","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows 10 Version 1607","Windows 10 Version 22H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows 11 version 22H2","Windows Server 2012","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41064","summary":".NET Framework Information Disclosure Vulnerability","cvss":5.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.8,"cvss_v4":null,"epss":0.00189,"ranking_epss":0.40652,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41064","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41064"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:20","euvd":{"id":"EUVD-2022-7282","description":".NET Framework Information Disclosure Vulnerability","published_time":"2022-11-09T00:00:00","cvss":5.8,"cvss_version":"3.1","epss":0.0019,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41064"],"products":["Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2","Microsoft .NET Framework 4.6.2","Nuget 4.8.5","Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2","Microsoft .NET Framework 4.8.1","Microsoft .NET Framework 4.7.2","Nuget 2.1.2","Microsoft .NET Framework 4.8","Microsoft .NET Framework 4.6/4.6.2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41039","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.01055,"ranking_epss":0.77999,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41039","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41039"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:19","euvd":{"id":"EUVD-2022-44284","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-11-09T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.0105,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41039"],"products":["Windows 8.1","Windows 7","Windows Server 2019","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows 11 version 22H2","Windows 7 Service Pack 1","Windows 10 Version 22H2","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41045","summary":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00259,"ranking_epss":0.496,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41045","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41045"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:19","euvd":{"id":"EUVD-2022-44290","description":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0026,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41045"],"products":["Windows Server 2008 R2 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 8.1","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows 10 Version 1507","Windows 10 Version 1607","Windows Server 2016","Windows 10 Version 21H2","Windows Server 2012","Windows 7 Service Pack 1","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 10 Version 1809","Windows 11 version 22H2","Windows 10 Version 22H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41047","summary":"Microsoft ODBC Driver Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.18587,"ranking_epss":0.9541,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41047","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41047"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:19","euvd":{"id":"EUVD-2022-44292","description":"Microsoft ODBC Driver Remote Code Execution Vulnerability","published_time":"2022-11-09T00:00:00","cvss":8.8,"cvss_version":"3.1","epss":0.1859,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41047"],"products":["Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2012","Windows 10 Version 21H2","Windows 11 version 22H2","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows 7","Windows 10 Version 20H2","Windows 10 Version 22H2","Windows 8.1","Windows Server 2016","Windows Server 2008 Service Pack 2","Windows 10 Version 1507","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41048","summary":"Microsoft ODBC Driver Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.18587,"ranking_epss":0.9541,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41048","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41048"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:19","euvd":{"id":"EUVD-2022-44293","description":"Microsoft ODBC Driver Remote Code Execution Vulnerability","published_time":"2022-11-09T00:00:00","cvss":8.8,"cvss_version":"3.1","epss":0.1859,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41048"],"products":["Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2022","Windows 10 Version 21H2","Windows 11 version 22H2","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2019","Windows Server 2012 R2","Windows 7","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 20H2","Windows 8.1","Windows 10 Version 22H2","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41050","summary":"Windows Extensible File Allocation Table Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01014,"ranking_epss":0.77575,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41050","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41050"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:19","euvd":{"id":"EUVD-2022-44295","description":"Windows Extensible File Allocation Table Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0101,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41050"],"products":["Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 22H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 21H2","Windows 11 version 22H2","Windows 10 Version 1607","Windows Server 2016","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41052","summary":"Windows Graphics Component Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02244,"ranking_epss":0.84927,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41052","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41052"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:19","euvd":{"id":"EUVD-2022-44297","description":"Windows Graphics Component Remote Code Execution Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0224,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41052"],"products":["Windows 10 Version 1607","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H2","Windows Server 2016","Windows 10 Version 20H2","Windows 10 Version 1507","Windows 10 Version 22H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41053","summary":"Windows Kerberos Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.24873,"ranking_epss":0.96281,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41053","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41053"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:19","euvd":{"id":"EUVD-2022-44298","description":"Windows Kerberos Denial of Service Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.2487,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41053"],"products":["Windows Server 2016","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 7","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows 10 Version 22H2","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 22H2","Windows Server 2019","Windows 10 Version 1607","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37992","summary":"Windows Group Policy Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00895,"ranking_epss":0.76048,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37992","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37992"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:15","euvd":{"id":"EUVD-2022-40599","description":"Windows Group Policy Elevation of Privilege Vulnerability","published_time":"2022-11-09T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.009,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37992"],"products":["Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 11 version 22H2","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 22H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows 10 Version 1809","Windows Server 2016","Windows Server 2012 R2","Windows 10 Version 1607","Windows 7","Windows 7 Service Pack 1","Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows Server 2022","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38015","summary":"Windows Hyper-V Denial of Service Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.5,"cvss_v4":null,"epss":0.00679,"ranking_epss":0.72053,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38015","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38015"],"vendor":null,"product":null,"version":null,"published_time":"2022-11-09T22:15:15","euvd":{"id":"EUVD-2022-40621","description":"Windows Hyper-V Denial of Service Vulnerability","published_time":"2022-11-09T00:00:00","cvss":6.5,"cvss_version":"3.1","epss":0.0068,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38015"],"products":["Windows Server 2022","Windows Server 2016","Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 10 Version 1507","Windows 10 Version 22H2","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 11 version 22H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-41081","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.11998,"ranking_epss":0.93935,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41081","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41081"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:21","euvd":{"id":"EUVD-2022-44325","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.12,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41081"],"products":["Windows 10 Version 21H1","Windows Server 2022","Windows 8.1","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows 11 version 22H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1507","Windows 7","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2012","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows 10 Version 1607","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38051","summary":"Windows Graphics Component Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02424,"ranking_epss":0.85464,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38051","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38051"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:20","euvd":{"id":"EUVD-2022-40657","description":"Windows Graphics Component Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0242,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38051"],"products":["Windows Server 2019","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows Server 2008  Service Pack 2","Windows 10 Version 1607","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows Server 2012 R2","Windows Server 2012","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 11 version 22H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38045","summary":"Windows Server Service Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.15462,"ranking_epss":0.94815,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38045","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38045"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:19","euvd":{"id":"EUVD-2022-40651","description":"Windows Server Service Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.8,"cvss_version":"3.1","epss":0.1546,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38045"],"products":["Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows 11 version 22H2","Windows 10 Version 1809","Windows Server 2012 R2","Windows 10 Version 21H2","Windows 8.1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012","Windows 10 Version 1809","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 10 Version 1507","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38046","summary":"Web Account Manager Information Disclosure Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.1816,"ranking_epss":0.95337,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38046","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38046"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:19","euvd":{"id":"EUVD-2022-40652","description":"Web Account Manager Information Disclosure Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.1816,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38046"],"products":["Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38047","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.01265,"ranking_epss":0.79861,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38047","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38047"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:19","euvd":{"id":"EUVD-2022-40653","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.0127,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38047"],"products":["Windows 10 Version 21H2","Windows 7","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows Server 2019","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows 11 version 21H2","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows 11 version 22H2","Windows Server 2008 Service Pack 2","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38050","summary":"Win32k Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.03175,"ranking_epss":0.87238,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38050","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38050"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:19","euvd":{"id":"EUVD-2022-40656","description":"Win32k Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0318,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38050"],"products":["Windows Server 2019","Windows 10 Version 1809","Windows 11 version 21H2","Windows 11 version 22H2","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38042","summary":"Active Directory Domain Services Elevation of Privilege Vulnerability","cvss":7.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.1,"cvss_v4":null,"epss":0.05778,"ranking_epss":0.90689,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38042","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38042"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:18","euvd":{"id":"EUVD-2022-40648","description":"Active Directory Domain Services Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.1,"cvss_version":"3.1","epss":0.0578,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38042"],"products":["Windows Server 2019","Windows 10 Version 1809","Windows Server 2012","Windows 7","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 22H2","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2016","Windows 7 Service Pack 1","Windows 8.1","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2012 R2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38043","summary":"Windows Security Support Provider Interface Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.01284,"ranking_epss":0.80027,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38043","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38043"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:18","euvd":{"id":"EUVD-2022-40649","description":"Windows Security Support Provider Interface Information Disclosure Vulnerability","published_time":"2022-10-11T00:00:00","cvss":5.5,"cvss_version":"3.1","epss":0.0128,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38043"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 7","Windows 10 Version 21H2","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 1507","Windows Server 2012","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows 11 version 22H2","Windows 10 Version 21H1","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38044","summary":"Windows CD-ROM File System Driver Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.06841,"ranking_epss":0.91552,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38044","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38044"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:18","euvd":{"id":"EUVD-2022-40650","description":"Windows CD-ROM File System Driver Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0684,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38044"],"products":["Windows Server 2012 R2","Windows 11 version 21H2","Windows Server 2012","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 7","Windows 8.1","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 11 version 22H2","Windows Server 2016","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38040","summary":"Microsoft ODBC Driver Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.17266,"ranking_epss":0.95182,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38040","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38040"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:17","euvd":{"id":"EUVD-2022-40646","description":"Microsoft ODBC Driver Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.8,"cvss_version":"3.1","epss":0.1727,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38040"],"products":["Windows 10 Version 1507","Windows Server 2012 R2","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows 8.1","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows 10 Version 21H1","Windows 10 Version 1607","Windows 11 version 22H2","Windows 10 Version 21H2","Windows Server 2016","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows 7","Windows Server 2008 R2 Service Pack 1","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38041","summary":"Windows Secure Channel Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.27321,"ranking_epss":0.96523,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38041","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38041"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:17","euvd":{"id":"EUVD-2022-40647","description":"Windows Secure Channel Denial of Service Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.2732,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38041"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7","Windows Server 2022","Windows 10 Version 20H2","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H2","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1","Windows 11 version 22H2","Windows 10 Version 1607","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38036","summary":"Internet Key Exchange (IKE) Protocol Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.23743,"ranking_epss":0.96124,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38036","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38036"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:16","euvd":{"id":"EUVD-2022-40642","description":"Internet Key Exchange (IKE) Protocol Denial of Service Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.2374,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38036"],"products":["Windows 11 version 21H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38037","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.03021,"ranking_epss":0.86912,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38037","http://packetstormsecurity.com/files/169791/Windows-Kernel-Type-Confusion-Memory-Corruption.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38037"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:16","euvd":{"id":"EUVD-2022-40643","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0302,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38037"],"products":["Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2012","Windows 11 version 22H2","Windows Server 2022","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows 10 Version 21H1","Windows 10 Version 1607","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows Server 2016","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38038","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00924,"ranking_epss":0.7646,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38038","http://packetstormsecurity.com/files/169805/Windows-Kernel-Long-Registry-Path-Memory-Corruption.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38038"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:16","euvd":{"id":"EUVD-2022-40644","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0092,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38038"],"products":["Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server 2012 R2","Windows Server 2012","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 22H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows 7","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38039","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0237,"ranking_epss":0.853,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38039","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38039"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:16","euvd":{"id":"EUVD-2022-40645","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0237,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38039"],"products":["Windows 10 Version 20H2","Windows Server 2022","Windows Server 2019","Windows 11 version 22H2","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38029","summary":"Windows ALPC Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":null,"cvss_v3":7,"cvss_v4":null,"epss":0.05786,"ranking_epss":0.90698,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38029","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38029"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:15","euvd":{"id":"EUVD-2022-40635","description":"Windows ALPC Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7,"cvss_version":"3.1","epss":0.0579,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38029"],"products":["Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012 R2","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 11 version 22H2","Windows 8.1","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 1607","Windows Server 2016","Windows 7 Service Pack 1","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38030","summary":"Windows USB Serial Driver Information Disclosure Vulnerability","cvss":4.3,"cvss_version":3,"cvss_v2":null,"cvss_v3":4.3,"cvss_v4":null,"epss":0.01115,"ranking_epss":0.78595,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38030","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38030"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:15","euvd":{"id":"EUVD-2022-40636","description":"Windows USB Serial Driver Information Disclosure Vulnerability","published_time":"2022-10-11T00:00:00","cvss":4.3,"cvss_version":"3.1","epss":0.0112,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38030"],"products":["Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 11 version 22H2","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38031","summary":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.17266,"ranking_epss":0.95182,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38031","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38031"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:15","euvd":{"id":"EUVD-2022-40637","description":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.8,"cvss_version":"3.1","epss":0.1727,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38031"],"products":["Windows Server 2022","Windows 7 Service Pack 1","Windows 11 version 21H2","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2012","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2019","Windows 10 Version 1607","Windows 8.1","Windows Server 2016","Windows 10 Version 1507","Windows Server 2008  Service Pack 2","Windows 7","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 11 version 22H2","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38032","summary":"Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability","cvss":6.6,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.6,"cvss_v4":null,"epss":0.00692,"ranking_epss":0.72318,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38032","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38032"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:15","euvd":{"id":"EUVD-2022-40638","description":"Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability","published_time":"2022-10-11T00:00:00","cvss":6.6,"cvss_version":"3.1","epss":0.0069,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38032"],"products":["Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows 7","Windows 11 version 22H2","Windows Server 2008  Service Pack 2","Windows 8.1","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2012","Windows Server 2019","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38033","summary":"Windows Server Remotely Accessible Registry Keys Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.5,"cvss_v4":null,"epss":0.15348,"ranking_epss":0.9479,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38033","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38033"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:15","euvd":{"id":"EUVD-2022-40639","description":"Windows Server Remotely Accessible Registry Keys Information Disclosure Vulnerability","published_time":"2022-10-11T00:00:00","cvss":6.5,"cvss_version":"3.1","epss":0.1535,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38033"],"products":["Windows 7","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2012","Windows 11 version 22H2","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 8.1","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows Server 2008 Service Pack 2","Windows 10 Version 1507","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38034","summary":"Windows Workstation Service Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.1247,"ranking_epss":0.94074,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38034","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38034"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:15","euvd":{"id":"EUVD-2022-40640","description":"Windows Workstation Service Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.8,"cvss_version":"3.1","epss":0.1247,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38034"],"products":["Windows 11 version 22H2","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1507","Windows Server 2008  Service Pack 2","Windows 8.1","Windows Server 2016","Windows 10 Version 21H2","Windows Server 2012","Windows 10 Version 1607","Windows Server 2012 R2","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows 7","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37997","summary":"Windows Graphics Component Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00547,"ranking_epss":0.68311,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37997","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37997"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40604","description":"Windows Graphics Component Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0055,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37997"],"products":["Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2022","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 22H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 11 version 21H2","Windows 7","Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 8.1","Windows Server 2019","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37998","summary":"Windows Local Session Manager (LSM) Denial of Service Vulnerability","cvss":7.7,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.7,"cvss_v4":null,"epss":0.04691,"ranking_epss":0.89588,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37998","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37998"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40605","description":"Windows Local Session Manager (LSM) Denial of Service Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.7,"cvss_version":"3.1","epss":0.0469,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37998"],"products":["Windows 11 version 22H2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37999","summary":"Windows Group Policy Preference Client Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00547,"ranking_epss":0.68311,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37999","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37999"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40606","description":"Windows Group Policy Preference Client Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0055,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37999"],"products":["Windows Server 2008 Service Pack 2","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 7","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2016","Windows Server 2008  Service Pack 2","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012","Windows 11 version 21H2","Windows 10 Version 1809","Windows 11 version 22H2","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38000","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.01036,"ranking_epss":0.77814,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38000","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38000"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40607","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.0104,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38000"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows 7","Windows 11 version 21H2","Windows 10 Version 1809","Windows 11 version 22H2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows 10 Version 21H1","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38003","summary":"Windows Resilient File System Elevation of Privilege","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00723,"ranking_epss":0.7299,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38003","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38003"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40610","description":"Windows Resilient File System Elevation of Privilege","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0072,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38003"],"products":["Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2022","Windows Server 2016","Windows 10 Version 1607","Windows Server 2019","Windows 11 version 22H2","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38016","summary":"Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.00509,"ranking_epss":0.66813,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38016","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38016"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40622","description":"Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.8,"cvss_version":"3.1","epss":0.0051,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38016"],"products":["Windows 11 version 21H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 11 version 22H2","Windows Server 2019","Windows 10 Version 21H2","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38021","summary":"Connected User Experiences and Telemetry Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":null,"cvss_v3":7,"cvss_v4":null,"epss":0.0031,"ranking_epss":0.5457,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38021","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38021"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40627","description":"Connected User Experiences and Telemetry Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7,"cvss_version":"3.1","epss":0.0031,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38021"],"products":["Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 1607","Windows 10 Version 21H1","Windows Server 2016","Windows 11 version 22H2","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38022","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":3.3,"cvss_version":3,"cvss_v2":null,"cvss_v3":3.3,"cvss_v4":null,"epss":0.00594,"ranking_epss":0.69771,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38022","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38022"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40628","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":3.3,"cvss_version":"3.1","epss":0.0059,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38022"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows Server 2012","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 7 Service Pack 1","Windows 7","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 11 version 22H2","Windows Server 2019","Windows 8.1","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38025","summary":"Windows Distributed File System (DFS) Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.01188,"ranking_epss":0.79228,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38025","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38025"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40631","description":"Windows Distributed File System (DFS) Information Disclosure Vulnerability","published_time":"2022-10-11T00:00:00","cvss":5.5,"cvss_version":"3.1","epss":0.0119,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38025"],"products":["Windows 11 version 21H2","Windows Server 2022","Windows 11 version 22H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38026","summary":"Windows DHCP Client Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00405,"ranking_epss":0.61444,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38026","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38026"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40632","description":"Windows DHCP Client Information Disclosure Vulnerability","published_time":"2022-10-11T00:00:00","cvss":5.5,"cvss_version":"3.1","epss":0.0041,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38026"],"products":["Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 7","Windows 10 Version 21H2","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2012 R2","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2016","Windows 11 version 22H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1607","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38027","summary":"Windows Storage Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":null,"cvss_v3":7,"cvss_v4":null,"epss":0.00234,"ranking_epss":0.46495,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38027","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38027"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:14","euvd":{"id":"EUVD-2022-40633","description":"Windows Storage Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7,"cvss_version":"3.1","epss":0.0023,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38027"],"products":["Windows Server 2016","Windows Server 2012","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2022","Windows 8.1","Windows 11 version 21H2","Windows 10 Version 1507","Windows 10 Version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 21H1","Windows 11 version 22H2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37982","summary":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.17266,"ranking_epss":0.95182,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37982","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37982"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40589","description":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.8,"cvss_version":"3.1","epss":0.1727,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37982"],"products":["Windows 10 Version 1809","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2012","Windows Server 2022","Windows Server 2019","Windows 10 Version 1607","Windows 11 version 22H2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016","Windows 8.1","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows 7","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37983","summary":"Microsoft DWM Core Library Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00723,"ranking_epss":0.7299,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37983","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37983"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40590","description":"Microsoft DWM Core Library Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0072,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37983"],"products":["Windows 11 version 22H2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2022","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37984","summary":"Windows WLAN Service Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0063,"ranking_epss":0.70782,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37984","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37984"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40591","description":"Windows WLAN Service Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0063,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37984"],"products":["Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1507","Windows 11 version 22H2","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 1809","Windows 8.1","Windows Server 2016","Windows Server 2022","Windows Server 2019","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37985","summary":"Windows Graphics Component Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.03514,"ranking_epss":0.87905,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37985","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37985"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40592","description":"Windows Graphics Component Information Disclosure Vulnerability","published_time":"2022-10-11T00:00:00","cvss":5.5,"cvss_version":"3.1","epss":0.0351,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37985"],"products":["Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 7","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2012 R2","Windows Server 2012","Windows Server 2008 Service Pack 2","Windows 11 version 22H2","Windows Server 2022","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37986","summary":"Windows Win32k Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00547,"ranking_epss":0.68311,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37986","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37986"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40593","description":"Windows Win32k Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0055,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37986"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2012","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows 7","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows 10 Version 1607","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 11 version 22H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37987","summary":"Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.06034,"ranking_epss":0.90922,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37987","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37987"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40594","description":"Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0603,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37987"],"products":["Windows 11 version 22H2","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows 8.1","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37988","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0118,"ranking_epss":0.79165,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37988","http://packetstormsecurity.com/files/169731/Windows-Kernel-Registry-Use-After-Free.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37988"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40595","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0118,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37988"],"products":["Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019","Windows 11 version 22H2","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows 7","Windows 10 Version 21H2","Windows 10 Version 1607","Windows Server 2012","Windows Server 2008 Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows Server 2016","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 7 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37989","summary":"Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.11017,"ranking_epss":0.93602,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37989","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37989"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40596","description":"Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.1102,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37989"],"products":["Windows 8.1","Windows 11 version 22H2","Windows 10 Version 1607","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2019","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7","Windows Server 2012","Windows 11 version 21H2","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37990","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00608,"ranking_epss":0.70195,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37990","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37990"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40597","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0061,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37990"],"products":["Windows 10 Version 1607","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 21H2","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 11 version 22H2","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2012 R2","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37991","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0118,"ranking_epss":0.79165,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37991","http://packetstormsecurity.com/files/169807/Windows-Kernel-Long-Registry-Key-Value-Out-Of-Bounds-Read.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37991"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40598","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0118,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37991"],"products":["Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows 10 Version 1607","Windows 10 Version 1507","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012","Windows 8.1","Windows 7 Service Pack 1","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2","Windows Server 2022","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 11 version 22H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37993","summary":"Windows Group Policy Preference Client Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00547,"ranking_epss":0.68311,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37993","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37993"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40600","description":"Windows Group Policy Preference Client Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0055,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37993"],"products":["Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows 11 version 22H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1809","Windows 8.1","Windows 10 Version 21H2","Windows Server 2016","Windows Server 2019","Windows 10 Version 21H1","Windows Server 2022","Windows 7","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37994","summary":"Windows Group Policy Preference Client Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00713,"ranking_epss":0.72782,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37994","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37994"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40601","description":"Windows Group Policy Preference Client Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0071,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37994"],"products":["Windows Server 2016","Windows 8.1","Windows Server 2019","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows 11 version 22H2","Windows Server 2008 Service Pack 2","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows Server 2008  Service Pack 2","Windows Server 2012","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 21H1","Windows 7 Service Pack 1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37995","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00723,"ranking_epss":0.7299,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37995","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37995"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40602","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0072,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37995"],"products":["Windows 11 version 21H2","Windows Server 2016","Windows 11 version 22H2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37996","summary":"Windows Kernel Memory Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.01038,"ranking_epss":0.77823,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37996","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37996"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:13","euvd":{"id":"EUVD-2022-40603","description":"Windows Kernel Memory Information Disclosure Vulnerability","published_time":"2022-10-11T00:00:00","cvss":5.5,"cvss_version":"3.1","epss":0.0104,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37996"],"products":["Windows Server 2019","Windows Server 2016","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 20H2","Windows 8.1","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 11 version 22H2","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37970","summary":"Windows DWM Core Library Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00947,"ranking_epss":0.76762,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37970","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37970"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:12","euvd":{"id":"EUVD-2022-40577","description":"Windows DWM Core Library Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0095,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37970"],"products":["Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2019","Windows 11 version 22H2","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2022","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37973","summary":"Windows Local Session Manager (LSM) Denial of Service Vulnerability","cvss":7.7,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.7,"cvss_v4":null,"epss":0.04237,"ranking_epss":0.89021,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37973","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37973"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:12","euvd":{"id":"EUVD-2022-40580","description":"Windows Local Session Manager (LSM) Denial of Service Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.7,"cvss_version":"3.1","epss":0.0424,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37973"],"products":["Windows 10 Version 21H1","Windows 11 version 22H2","Windows 10 Version 20H2","Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37974","summary":"Windows Mixed Reality Developer Tools Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.5,"cvss_v4":null,"epss":0.10807,"ranking_epss":0.9352,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37974","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37974"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:12","euvd":{"id":"EUVD-2022-40581","description":"Windows Mixed Reality Developer Tools Information Disclosure Vulnerability","published_time":"2022-10-11T00:00:00","cvss":6.5,"cvss_version":"3.1","epss":0.1081,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37974"],"products":["Windows 11 version 22H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37975","summary":"Windows Group Policy Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.21134,"ranking_epss":0.9579,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37975","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37975"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:12","euvd":{"id":"EUVD-2022-40582","description":"Windows Group Policy Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.8,"cvss_version":"3.1","epss":0.2113,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37975"],"products":["Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 10 Version 1507","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 7","Windows Server 2012","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2022","Windows 11 version 22H2","Windows 10 Version 1607","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37977","summary":"Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.5,"cvss_v4":null,"epss":0.17769,"ranking_epss":0.95272,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37977","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37977"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:12","euvd":{"id":"EUVD-2022-40584","description":"Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability","published_time":"2022-10-11T00:00:00","cvss":6.5,"cvss_version":"3.1","epss":0.1777,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37977"],"products":["Windows Server 2008  Service Pack 2","Windows 11 version 21H2","Windows Server 2012","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows 7","Windows 10 Version 1607","Windows 11 version 22H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2022","Windows Server 2012 R2","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37978","summary":"Windows Active Directory Certificate Services Security Feature Bypass","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.10188,"ranking_epss":0.93297,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37978","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37978"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:12","euvd":{"id":"EUVD-2022-40585","description":"Windows Active Directory Certificate Services Security Feature Bypass","published_time":"2022-10-11T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.1019,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37978"],"products":["Windows 7","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2019","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows 11 version 21H2","Windows Server 2016","Windows Server 2012","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows 8.1","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 22H2","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37979","summary":"Windows Hyper-V Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00552,"ranking_epss":0.68492,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37979","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37979"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:12","euvd":{"id":"EUVD-2022-40586","description":"Windows Hyper-V Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0055,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37979"],"products":["Windows 11 version 21H2","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 22H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37980","summary":"Windows DHCP Client Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00723,"ranking_epss":0.7299,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37980","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37980"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:12","euvd":{"id":"EUVD-2022-40587","description":"Windows DHCP Client Elevation of Privilege Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0072,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37980"],"products":["Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 21H1","Windows 11 version 22H2","Windows 10 Version 21H2","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37981","summary":"Windows Event Logging Service Denial of Service Vulnerability","cvss":4.3,"cvss_version":3,"cvss_v2":null,"cvss_v3":4.3,"cvss_v4":null,"epss":0.11074,"ranking_epss":0.93624,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37981","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37981"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:12","euvd":{"id":"EUVD-2022-40588","description":"Windows Event Logging Service Denial of Service Vulnerability","published_time":"2022-10-11T00:00:00","cvss":4.3,"cvss_version":"3.1","epss":0.1107,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37981"],"products":["Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 11 version 22H2","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 7","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22035","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.01265,"ranking_epss":0.79861,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22035","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-22035"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:11","euvd":{"id":"EUVD-2022-27189","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.0127,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22035"],"products":["Windows Server 2012 R2","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows Server 2012","Windows 8.1","Windows Server 2022","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2016","Windows 10 Version 1809","Windows 11 version 22H2","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24504","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.01265,"ranking_epss":0.79861,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24504","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-24504"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:11","euvd":{"id":"EUVD-2022-29385","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.0127,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24504"],"products":["Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 7","Windows Server 2008  Service Pack 2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 22H2","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30198","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.01036,"ranking_epss":0.77814,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30198","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30198"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:11","euvd":{"id":"EUVD-2022-35404","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.0104,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30198"],"products":["Windows 10 Version 1607","Windows 11 version 21H2","Windows 10 Version 1809","Windows 8.1","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 7","Windows Server 2008 R2 Service Pack 1","Windows Server 2012","Windows 11 version 22H2","Windows 7 Service Pack 1","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-33634","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.01036,"ranking_epss":0.77814,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33634","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-33634"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:11","euvd":{"id":"EUVD-2022-36677","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":8.1,"cvss_version":"3.1","epss":0.0104,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33634"],"products":["Windows Server 2008 Service Pack 2","Windows 10 Version 1607","Windows Server 2022","Windows 7","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2016","Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 11 version 22H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 20H2","Windows 8.1","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-33635","summary":"Windows GDI+ Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.06886,"ranking_epss":0.91581,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33635","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-33635"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:11","euvd":{"id":"EUVD-2022-36678","description":"Windows GDI+ Remote Code Execution Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0689,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33635"],"products":["Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 22H2","Windows Server 2016","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows 7","Windows Server 2012","Windows 10 Version 1809","Windows Server 2022","Windows Server 2008  Service Pack 2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-33645","summary":"Windows TCP/IP Driver Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.19014,"ranking_epss":0.9547,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33645","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-33645"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:11","euvd":{"id":"EUVD-2022-36688","description":"Windows TCP/IP Driver Denial of Service Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.1901,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33645"],"products":["Windows Server 2022","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows 7","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2019","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 10 Version 1507","Windows 11 version 22H2","Windows Server 2016","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34689","summary":"Windows CryptoAPI Spoofing Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.12097,"ranking_epss":0.93959,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34689","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34689"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:11","euvd":{"id":"EUVD-2022-37639","description":"Windows CryptoAPI Spoofing Vulnerability","published_time":"2022-10-11T00:00:00","cvss":7.5,"cvss_version":"3.1","epss":0.121,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34689"],"products":["Windows Server 2022","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows Server 2019","Windows 11 version 21H2","Windows Server 2016","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35770","summary":"Windows NTLM Spoofing Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.5,"cvss_v4":null,"epss":0.18601,"ranking_epss":0.95411,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35770","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-35770"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:11","euvd":{"id":"EUVD-2022-38643","description":"Windows NTLM Spoofing Vulnerability","published_time":"2022-10-11T00:00:00","cvss":6.5,"cvss_version":"3.1","epss":0.186,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35770"],"products":["Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows Server 2019","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 11 version 22H2","Windows 10 Version 1607","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37965","summary":"Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability","cvss":5.9,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.9,"cvss_v4":null,"epss":0.07316,"ranking_epss":0.91871,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37965","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37965"],"vendor":null,"product":null,"version":null,"published_time":"2022-10-11T19:15:11","euvd":{"id":"EUVD-2022-40572","description":"Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability","published_time":"2022-10-11T00:00:00","cvss":5.9,"cvss_version":"3.1","epss":0.0732,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37965"],"products":["Windows 8.1","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2022","Windows Server 2019","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows Server 2012 R2","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server 2012","Windows 10 Version 21H2","Windows 11 version 22H2","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37958","summary":"SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.11575,"ranking_epss":0.93805,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37958","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37958"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:12","euvd":{"id":"EUVD-2022-40565","description":"SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability","published_time":"2022-09-13T18:42:07","cvss":8.1,"cvss_version":"3.1","epss":0.1158,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37958"],"products":["Windows 8.1","Windows Server 2016","Windows 10 Version 21H1","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 21H2","Windows 10 Version 1507","Windows Server 2019","Windows 7","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows 10 Version 1809","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38004","summary":"Windows Fax Service Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02096,"ranking_epss":0.84408,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38004","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38004"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:12","euvd":{"id":"EUVD-2022-40611","description":"Windows Fax Service Remote Code Execution Vulnerability","published_time":"2022-09-13T18:42:13","cvss":7.8,"cvss_version":"3.1","epss":0.021,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38004"],"products":["Windows Server 2012","Windows Server 2008 Service Pack 2","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows 10 Version 1607","Windows 10 Version 1507","Windows 8.1","Windows Server 2016","Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38005","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01459,"ranking_epss":0.81261,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38005","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38005"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:12","euvd":{"id":"EUVD-2022-40612","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-09-13T18:42:14","cvss":7.8,"cvss_version":"3.1","epss":0.0146,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38005"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows 10 Version 21H2","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows Server 2019","Windows Server 2012","Windows 10 Version 1809","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows 11 version 21H2","Windows 8.1","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38006","summary":"Windows Graphics Component Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.5,"cvss_v4":null,"epss":0.26117,"ranking_epss":0.96412,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38006","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38006"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:12","euvd":{"id":"EUVD-2022-40613","description":"Windows Graphics Component Information Disclosure Vulnerability","published_time":"2022-09-13T18:42:15","cvss":6.5,"cvss_version":"3.1","epss":0.2612,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38006"],"products":["Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows 8.1","Windows Server 2008  Service Pack 2","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 7","Windows Server 2022","Windows Server 2016","Windows 10 Version 1809","Windows Server 2012","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-38011","summary":"Raw Image Extension Remote Code Execution Vulnerability","cvss":7.3,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.3,"cvss_v4":null,"epss":0.08023,"ranking_epss":0.92298,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38011","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38011"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:12","euvd":{"id":"EUVD-2022-40618","description":"Raw Image Extension Remote Code Execution Vulnerability","published_time":"2022-09-13T18:42:19","cvss":7.3,"cvss_version":"3.1","epss":0.0802,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38011"],"products":["Raw Image Extension"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35831","summary":"Windows Remote Access Connection Manager Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00646,"ranking_epss":0.71205,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35831","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35831"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-38704","description":"Windows Remote Access Connection Manager Information Disclosure Vulnerability","published_time":"2022-09-13T18:41:53","cvss":5.5,"cvss_version":"3.1","epss":0.0065,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35831"],"products":["Windows Server 2016","Windows Server 2022","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2012 R2","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35832","summary":"Windows Event Tracing Denial of Service Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00557,"ranking_epss":0.6864,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35832","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35832"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-38705","description":"Windows Event Tracing Denial of Service Vulnerability","published_time":"2022-09-13T18:41:54","cvss":5.5,"cvss_version":"3.1","epss":0.0056,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35832"],"products":["Windows 10 Version 21H1","Windows 7","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2016","Windows Server 2019","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35833","summary":"Windows Secure Channel Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.19507,"ranking_epss":0.95541,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35833","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35833"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-38706","description":"Windows Secure Channel Denial of Service Vulnerability","published_time":"2022-09-13T18:41:55","cvss":7.5,"cvss_version":"3.1","epss":0.1951,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35833"],"products":["Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2022","Windows 10 Version 1607","Windows 8.1","Windows 10 Version 1809","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2012 R2","Windows 11 version 21H2","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35834","summary":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13911,"ranking_epss":0.94481,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35834","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35834"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-38707","description":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:56","cvss":8.8,"cvss_version":"3.1","epss":0.1391,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35834"],"products":["Windows 11 version 21H2","Windows Server 2019","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows 8.1","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2016","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 7","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35835","summary":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13911,"ranking_epss":0.94481,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35835","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35835"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-38708","description":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:57","cvss":8.8,"cvss_version":"3.1","epss":0.1391,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35835"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2019","Windows Server 2008 Service Pack 2","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server 2012 R2","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2016","Windows 7"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35836","summary":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13911,"ranking_epss":0.94481,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35836","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35836"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-38709","description":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:58","cvss":8.8,"cvss_version":"3.1","epss":0.1391,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35836"],"products":["Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2012 R2","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2019","Windows 10 Version 21H1","Windows 7","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35837","summary":"Windows Graphics Component Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.5,"cvss_v4":null,"epss":0.16842,"ranking_epss":0.95103,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35837","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35837"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-38710","description":"Windows Graphics Component Information Disclosure Vulnerability","published_time":"2022-09-13T00:00:00","cvss":6.5,"cvss_version":"3.1","epss":0.1684,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35837"],"products":["Windows Server 2016","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2","Windows Server 2022","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows 10 Version 1507","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35838","summary":"HTTP V3 Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.19484,"ranking_epss":0.95538,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35838","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35838"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-38711","description":"HTTP V3 Denial of Service Vulnerability","published_time":"2022-09-13T18:42:00","cvss":7.5,"cvss_version":"3.1","epss":0.1948,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35838"],"products":["Windows Server 2022","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35840","summary":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13911,"ranking_epss":0.94481,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35840","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35840"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-38713","description":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","published_time":"2022-09-13T18:42:00","cvss":8.8,"cvss_version":"3.1","epss":0.1391,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35840"],"products":["Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 8.1","Windows Server 2019","Windows Server 2016","Windows Server 2008 Service Pack 2","Windows 7","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2012","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35841","summary":"Windows Enterprise App Management Service Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.26184,"ranking_epss":0.96418,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35841","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35841"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-38714","description":"Windows Enterprise App Management Service Remote Code Execution Vulnerability","published_time":"2022-09-13T18:42:01","cvss":8.8,"cvss_version":"3.1","epss":0.2618,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35841"],"products":["Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2022","Windows 10 Version 1507","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37954","summary":"DirectX Graphics Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.03302,"ranking_epss":0.87512,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37954","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37954"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-40561","description":"DirectX Graphics Kernel Elevation of Privilege Vulnerability","published_time":"2022-09-13T18:42:03","cvss":7.8,"cvss_version":"3.1","epss":0.033,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37954"],"products":["Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2019","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37955","summary":"Windows Group Policy Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01086,"ranking_epss":0.78303,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37955","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37955"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-40562","description":"Windows Group Policy Elevation of Privilege Vulnerability","published_time":"2022-09-13T18:42:04","cvss":7.8,"cvss_version":"3.1","epss":0.0109,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37955"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2012","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows 11 version 21H2","Windows 7","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37956","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00775,"ranking_epss":0.74054,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37956","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37956"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-40563","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-09-13T00:00:00","cvss":7.8,"cvss_version":"3.1","epss":0.0078,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37956"],"products":["Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows Server 2019","Windows 7","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1507","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows Server 2016","Windows 10 Version 1607","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows 11 version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-37957","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.03302,"ranking_epss":0.87512,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37957","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37957"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:11","euvd":{"id":"EUVD-2022-40564","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-09-13T18:42:06","cvss":7.8,"cvss_version":"3.1","epss":0.033,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37957"],"products":["Windows 11 version 21H2","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server 2016","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34718","summary":"Windows TCP/IP Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":9.8,"cvss_v4":null,"epss":0.85212,"ranking_epss":0.99377,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34718","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34718"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37667","description":"Windows TCP/IP Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:33","cvss":9.8,"cvss_version":"3.1","epss":0.8521,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34718"],"products":["Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2012","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 7","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows Server 2022","Windows Server 2012 R2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2016","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34719","summary":"Windows Distributed File System (DFS) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01109,"ranking_epss":0.78535,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34719","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34719"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37668","description":"Windows Distributed File System (DFS) Elevation of Privilege Vulnerability","published_time":"2022-09-13T18:41:34","cvss":7.8,"cvss_version":"3.1","epss":0.0111,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34719"],"products":["Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows 7","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1","Windows Server 2012","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34720","summary":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.29209,"ranking_epss":0.96703,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34720","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34720"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37669","description":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","published_time":"2022-09-13T18:41:35","cvss":7.5,"cvss_version":"3.1","epss":0.2921,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34720"],"products":["Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server 2012 R2","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 7","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34721","summary":"Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":9.8,"cvss_v4":null,"epss":0.266,"ranking_epss":0.96456,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34721","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34721"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37670","description":"Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:36","cvss":9.8,"cvss_version":"3.1","epss":0.266,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34721"],"products":["Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows 10 Version 21H2","Windows Server 2016","Windows Server 2012","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2008  Service Pack 2","Windows 10 Version 1607","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows 10 Version 21H1","Windows 7","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019","Windows 7 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34722","summary":"Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":9.8,"cvss_v4":null,"epss":0.15561,"ranking_epss":0.9484,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34722","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34722"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37671","description":"Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:37","cvss":9.8,"cvss_version":"3.1","epss":0.1556,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34722"],"products":["Windows Server 2019 (Server Core installation)","Windows 7","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows 11 version 21H2","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows Server 2019","Windows 10 Version 1607","Windows Server 2016","Windows Server 2008 Service Pack 2","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34723","summary":"Windows DPAPI (Data Protection Application Programming Interface) Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.04308,"ranking_epss":0.89125,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34723","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34723"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37672","description":"Windows DPAPI (Data Protection Application Programming Interface) Information Disclosure Vulnerability","published_time":"2022-09-13T18:41:38","cvss":5.5,"cvss_version":"3.1","epss":0.0431,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34723"],"products":["Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34725","summary":"Windows ALPC Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":null,"cvss_v3":7,"cvss_v4":null,"epss":0.00765,"ranking_epss":0.73889,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34725","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34725"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37674","description":"Windows ALPC Elevation of Privilege Vulnerability","published_time":"2022-09-13T18:41:40","cvss":7,"cvss_version":"3.1","epss":0.0077,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34725"],"products":["Windows 10 Version 20H2","Windows 11 version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows Server 2012 R2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows 8.1","Windows 10 Version 1607","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34726","summary":"Microsoft ODBC Driver Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13534,"ranking_epss":0.94385,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34726","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34726"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37675","description":"Microsoft ODBC Driver Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:41","cvss":8.8,"cvss_version":"3.1","epss":0.1353,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34726"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 7 Service Pack 1","Windows 10 Version 1607","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows Server 2019","Windows Server 2012","Windows 10 Version 20H2","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34727","summary":"Microsoft ODBC Driver Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13534,"ranking_epss":0.94385,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34727","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34727"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37676","description":"Microsoft ODBC Driver Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:41","cvss":8.8,"cvss_version":"3.1","epss":0.1353,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34727"],"products":["Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows 7","Windows 10 Version 1507","Windows 8.1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows Server 2022","Windows Server 2016","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34728","summary":"Windows Graphics Component Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.04166,"ranking_epss":0.88935,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34728","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34728"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37677","description":"Windows Graphics Component Information Disclosure Vulnerability","published_time":"2022-09-13T18:41:42","cvss":5.5,"cvss_version":"3.1","epss":0.0417,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34728"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2022","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2019","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server 2016","Windows 10 Version 21H2","Windows 7","Windows 10 Version 21H1","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 7 Service Pack 1","Windows 11 version 21H2","Windows Server 2012","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34729","summary":"Windows GDI Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.03061,"ranking_epss":0.87009,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34729","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34729"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37678","description":"Windows GDI Elevation of Privilege Vulnerability","published_time":"2022-09-13T18:41:43","cvss":7.8,"cvss_version":"3.1","epss":0.0306,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34729"],"products":["Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 10 Version 1809","Windows 7","Windows Server 2008  Service Pack 2","Windows 10 Version 21H1","Windows 10 Version 1607","Windows 8.1","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows Server 2016","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34730","summary":"Microsoft ODBC Driver Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13534,"ranking_epss":0.94385,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34730","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34730"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37679","description":"Microsoft ODBC Driver Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:44","cvss":8.8,"cvss_version":"3.1","epss":0.1353,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34730"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2022","Windows 7"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34731","summary":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13911,"ranking_epss":0.94481,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34731","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34731"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37680","description":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:45","cvss":8.8,"cvss_version":"3.1","epss":0.1391,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34731"],"products":["Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 7","Windows Server 2012 R2","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 21H2","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows 8.1","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34732","summary":"Microsoft ODBC Driver Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13534,"ranking_epss":0.94385,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34732","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34732"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37681","description":"Microsoft ODBC Driver Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:46","cvss":8.8,"cvss_version":"3.1","epss":0.1353,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34732"],"products":["Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows 7","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34733","summary":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13911,"ranking_epss":0.94481,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34733","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34733"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37682","description":"Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:47","cvss":8.8,"cvss_version":"3.1","epss":0.1391,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34733"],"products":["Windows 8.1","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 10 Version 1507","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2016","Windows 7 Service Pack 1","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34734","summary":"Microsoft ODBC Driver Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13534,"ranking_epss":0.94385,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34734","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34734"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-37683","description":"Microsoft ODBC Driver Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:48","cvss":8.8,"cvss_version":"3.1","epss":0.1353,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34734"],"products":["Windows 10 Version 1507","Windows 7 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2022","Windows 10 Version 1607","Windows 7","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016","Windows 10 Version 20H2","Windows 8.1","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35803","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01618,"ranking_epss":0.82225,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35803","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35803"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:10","euvd":{"id":"EUVD-2022-38676","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2022-09-13T18:41:49","cvss":7.8,"cvss_version":"3.1","epss":0.0162,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35803"],"products":["Windows 7","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H2","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26928","summary":"Windows Photo Import API Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":null,"cvss_v3":7,"cvss_v4":null,"epss":0.00267,"ranking_epss":0.5046,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26928","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26928"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:09","euvd":{"id":"EUVD-2022-31473","description":"Windows Photo Import API Elevation of Privilege Vulnerability","published_time":"2022-09-13T18:41:25","cvss":7,"cvss_version":"3.1","epss":0.0027,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26928"],"products":["Windows Server 2022","Windows 10 Version 21H2","Windows 10 Version 22H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1607","Windows Server 2019","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26929","summary":".NET Framework Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.04954,"ranking_epss":0.89883,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26929","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26929"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:09","euvd":{"id":"EUVD-2022-31474","description":".NET Framework Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:26","cvss":7.8,"cvss_version":"3.1","epss":0.0495,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26929"],"products":["Microsoft .NET Framework 3.5 AND 4.6/4.6.2","Microsoft .NET Framework 3.5 AND 4.8.1","Microsoft .NET Framework 4.8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30170","summary":"Windows Credential Roaming Service Elevation of Privilege Vulnerability","cvss":7.3,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.3,"cvss_v4":null,"epss":0.01318,"ranking_epss":0.8028,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30170","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30170"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:09","euvd":{"id":"EUVD-2022-35378","description":"Windows Credential Roaming Service Elevation of Privilege Vulnerability","published_time":"2022-09-13T18:41:27","cvss":7.3,"cvss_version":"3.1","epss":0.0132,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30170"],"products":["Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows 7","Windows 10 Version 21H2","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows 8.1","Windows Server 2019","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server 2022, 23H2 Edition (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30196","summary":"Windows Secure Channel Denial of Service Vulnerability","cvss":8.2,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.2,"cvss_v4":null,"epss":0.08047,"ranking_epss":0.9231,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30196","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30196"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:09","euvd":{"id":"EUVD-2022-35402","description":"Windows Secure Channel Denial of Service Vulnerability","published_time":"2022-09-13T18:41:28","cvss":8.2,"cvss_version":"3.1","epss":0.0805,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30196"],"products":["Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30200","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02026,"ranking_epss":0.84153,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30200","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30200"],"vendor":null,"product":null,"version":null,"published_time":"2022-09-13T19:15:09","euvd":{"id":"EUVD-2022-35406","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-09-13T18:41:29","cvss":7.8,"cvss_version":"3.1","epss":0.0203,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30200"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows Server 2008 Service Pack 2","Windows Server 2012","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2016","Windows 10 Version 1507","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 20H2","Windows 7","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34301","summary":"A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.","cvss":6.7,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.7,"cvss_v4":null,"epss":0.00125,"ranking_epss":0.31228,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://edk2-docs.gitbook.io/understanding-the-uefi-secure-boot-chain/secure_boot_chain_in_uefi/uefi_secure_boot","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01001.html","https://www.kb.cert.org/vuls/id/309662","https://edk2-docs.gitbook.io/understanding-the-uefi-secure-boot-chain/secure_boot_chain_in_uefi/uefi_secure_boot","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01001.html","https://www.kb.cert.org/vuls/id/309662"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-26T18:15:09","euvd":{"id":"EUVD-2022-37258","description":"A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.","published_time":"2022-08-26T00:00:00","cvss":null,"cvss_version":null,"epss":0.0013,"assigner":"mitre","references":["https://edk2-docs.gitbook.io/understanding-the-uefi-secure-boot-chain/secure_boot_chain_in_uefi/uefi_secure_boot","https://www.kb.cert.org/vuls/id/309662","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01001.html"],"products":["n/a"],"vendors":["n/a"]}},{"cve_id":"CVE-2022-34302","summary":"A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.","cvss":6.7,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.7,"cvss_v4":null,"epss":0.00143,"ranking_epss":0.34376,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://edk2-docs.gitbook.io/understanding-the-uefi-secure-boot-chain/secure_boot_chain_in_uefi/uefi_secure_boot","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01001.html","https://www.kb.cert.org/vuls/id/309662","https://edk2-docs.gitbook.io/understanding-the-uefi-secure-boot-chain/secure_boot_chain_in_uefi/uefi_secure_boot","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01001.html","https://www.kb.cert.org/vuls/id/309662"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-26T18:15:09","euvd":{"id":"EUVD-2022-37259","description":"A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.","published_time":"2022-08-26T00:00:00","cvss":null,"cvss_version":null,"epss":0.0014,"assigner":"mitre","references":["https://edk2-docs.gitbook.io/understanding-the-uefi-secure-boot-chain/secure_boot_chain_in_uefi/uefi_secure_boot","https://www.kb.cert.org/vuls/id/309662","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01001.html"],"products":["n/a"],"vendors":["n/a"]}},{"cve_id":"CVE-2022-34303","summary":"A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.","cvss":6.7,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.7,"cvss_v4":null,"epss":0.00112,"ranking_epss":0.29361,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://edk2-docs.gitbook.io/understanding-the-uefi-secure-boot-chain/secure_boot_chain_in_uefi/uefi_secure_boot","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01001.html","https://www.kb.cert.org/vuls/id/309662","https://edk2-docs.gitbook.io/understanding-the-uefi-secure-boot-chain/secure_boot_chain_in_uefi/uefi_secure_boot","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01001.html","https://www.kb.cert.org/vuls/id/309662"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-26T18:15:09","euvd":{"id":"EUVD-2022-37260","description":"A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.","published_time":"2022-08-26T00:00:00","cvss":null,"cvss_version":null,"epss":0.0011,"assigner":"mitre","references":["https://edk2-docs.gitbook.io/understanding-the-uefi-secure-boot-chain/secure_boot_chain_in_uefi/uefi_secure_boot","https://www.kb.cert.org/vuls/id/309662","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01001.html"],"products":["n/a"],"vendors":["n/a"]}},{"cve_id":"CVE-2022-35822","summary":"Windows Defender Credential Guard Security Feature Bypass Vulnerability","cvss":7.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.1,"cvss_v4":null,"epss":0.0067,"ranking_epss":0.71823,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35822","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35822"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-15T21:15:11","euvd":{"id":"EUVD-2022-38695","description":"Windows Defender Credential Guard Security Feature Bypass Vulnerability","published_time":"2022-08-15T20:30:36","cvss":7.1,"cvss_version":"3.1","epss":0.0067,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35822"],"products":["Windows Server version 20H2","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 21H2","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34711","summary":"Windows Defender Credential Guard Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00593,"ranking_epss":0.69746,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34711","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34711"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-15T21:15:08","euvd":{"id":"EUVD-2022-37661","description":"Windows Defender Credential Guard Elevation of Privilege Vulnerability","published_time":"2022-08-15T20:30:14","cvss":7.8,"cvss_version":"3.1","epss":0.0059,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34711"],"products":["Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019","Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35820","summary":"Windows Bluetooth Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01134,"ranking_epss":0.78769,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35820","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35820"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:15","euvd":{"id":"EUVD-2022-38693","description":"Windows Bluetooth Driver Elevation of Privilege Vulnerability","published_time":"2022-08-09T20:11:35","cvss":7.8,"cvss_version":"3.1","epss":0.0113,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35820"],"products":["Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows Server 2022","Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 7","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2019","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows 11 version 21H2","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35804","summary":"SMB Client and Server Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.1131,"ranking_epss":0.93702,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35804","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35804"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:14","euvd":{"id":"EUVD-2022-38677","description":"SMB Client and Server Remote Code Execution Vulnerability","published_time":"2022-08-09T20:08:38","cvss":8.8,"cvss_version":"3.1","epss":0.1131,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35804"],"products":["Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35792","summary":"Storage Spaces Direct Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01007,"ranking_epss":0.77484,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35792","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35792"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:13","euvd":{"id":"EUVD-2022-38665","description":"Storage Spaces Direct Elevation of Privilege Vulnerability","published_time":"2022-08-09T20:06:17","cvss":7.8,"cvss_version":"3.1","epss":0.0101,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35792"],"products":["Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2019","Windows Server 2016","Windows 10 Version 21H1","Windows Server version 20H2","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35793","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.3,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.3,"cvss_v4":null,"epss":0.05017,"ranking_epss":0.89947,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35793","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35793"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:13","euvd":{"id":"EUVD-2022-38666","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-08-09T20:06:30","cvss":7.3,"cvss_version":"3.1","epss":0.0502,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35793"],"products":["Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows Server 2012","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows 8.1","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35794","summary":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.0646,"ranking_epss":0.91279,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35794","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35794"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:13","euvd":{"id":"EUVD-2022-38667","description":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","published_time":"2022-08-09T20:06:44","cvss":8.1,"cvss_version":"3.1","epss":0.0646,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35794"],"products":["Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2019","Windows 10 Version 1809","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35795","summary":"Windows Error Reporting Service Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00888,"ranking_epss":0.7594,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35795","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35795"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:13","euvd":{"id":"EUVD-2022-38668","description":"Windows Error Reporting Service Elevation of Privilege Vulnerability","published_time":"2022-08-09T20:06:58","cvss":7.8,"cvss_version":"3.1","epss":0.0089,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35795"],"products":["Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows Server 2012","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows Server version 20H2","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 7","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35797","summary":"Windows Hello Security Feature Bypass Vulnerability","cvss":6.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":6.1,"cvss_v4":null,"epss":0.00487,"ranking_epss":0.6589,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35797","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35797"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:13","euvd":{"id":"EUVD-2022-38670","description":"Windows Hello Security Feature Bypass Vulnerability","published_time":"2022-08-09T20:07:26","cvss":6.1,"cvss_version":"3.1","epss":0.0049,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35797"],"products":["Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 20H2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35766","summary":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.0094,"ranking_epss":0.76682,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35766","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35766"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:12","euvd":{"id":"EUVD-2022-38639","description":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","published_time":"2022-08-09T19:57:28","cvss":8.1,"cvss_version":"3.1","epss":0.0094,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35766"],"products":["Windows Server version 20H2","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2019","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35767","summary":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.01273,"ranking_epss":0.79946,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35767","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35767"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:12","euvd":{"id":"EUVD-2022-38640","description":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","published_time":"2022-08-09T19:57:39","cvss":8.1,"cvss_version":"3.1","epss":0.0127,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35767"],"products":["Windows 10 Version 20H2","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows 7 Service Pack 1","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35768","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00671,"ranking_epss":0.71847,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35768","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35768"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:12","euvd":{"id":"EUVD-2022-38641","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:57:49","cvss":7.8,"cvss_version":"3.1","epss":0.0067,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35768"],"products":["Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2019","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 21H2","Windows 8.1","Windows Server 2016","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 7","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35769","summary":"Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.20394,"ranking_epss":0.95676,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35769","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35769"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:12","euvd":{"id":"EUVD-2022-38642","description":"Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability","published_time":"2022-08-09T19:58:02","cvss":7.5,"cvss_version":"3.1","epss":0.2039,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35769"],"products":["Windows 8.1","Windows 10 Version 21H2","Windows Server 2016","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019","Windows Server version 20H2","Windows Server 2012","Windows 11 version 21H2","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1607","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 7","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35771","summary":"Windows Defender Credential Guard Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0192,"ranking_epss":0.8374,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35771","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35771"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:12","euvd":{"id":"EUVD-2022-38644","description":"Windows Defender Credential Guard Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:58:15","cvss":7.8,"cvss_version":"3.1","epss":0.0192,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35771"],"products":["Windows Server 2016","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2019","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34704","summary":"Windows Defender Credential Guard Information Disclosure Vulnerability","cvss":4.7,"cvss_version":3,"cvss_v2":null,"cvss_v3":4.7,"cvss_v4":null,"epss":0.0264,"ranking_epss":0.86044,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34704","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34704"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-37654","description":"Windows Defender Credential Guard Information Disclosure Vulnerability","published_time":"2022-08-09T00:00:00","cvss":4.7,"cvss_version":"3.1","epss":0.0264,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34704"],"products":["Windows Server version 20H2","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows Server 2019","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34705","summary":"Windows Defender Credential Guard Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00683,"ranking_epss":0.7213,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34705","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34705"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-37655","description":"Windows Defender Credential Guard Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:53:35","cvss":7.8,"cvss_version":"3.1","epss":0.0068,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34705"],"products":["Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34706","summary":"Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02121,"ranking_epss":0.84507,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34706","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34706"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-37656","description":"Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:53:50","cvss":7.8,"cvss_version":"3.1","epss":0.0212,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34706"],"products":["Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2019","Windows 7","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1809","Windows 8.1","Windows Server 2022","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows Server version 20H2","Windows 10 Version 1607","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34707","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00361,"ranking_epss":0.58625,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34707","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34707"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-37657","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:54:04","cvss":7.8,"cvss_version":"3.1","epss":0.0036,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34707"],"products":["Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows Server version 20H2","Windows Server 2019","Windows 7 Service Pack 1","Windows 10 Version 21H1","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2016","Windows 10 Version 20H2","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34708","summary":"Windows Kernel Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.01923,"ranking_epss":0.83753,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34708","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34708"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-37658","description":"Windows Kernel Information Disclosure Vulnerability","published_time":"2022-08-09T19:54:17","cvss":5.5,"cvss_version":"3.1","epss":0.0192,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34708"],"products":["Windows Server 2008 R2 Service Pack 1","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows Server 2016","Windows Server 2012","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2022","Windows 10 Version 1809","Windows Server 2019","Windows Server 2008 Service Pack 2","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34709","summary":"Windows Defender Credential Guard Security Feature Bypass Vulnerability","cvss":6,"cvss_version":3,"cvss_v2":null,"cvss_v3":6,"cvss_v4":null,"epss":0.01773,"ranking_epss":0.83072,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34709","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34709"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-37659","description":"Windows Defender Credential Guard Security Feature Bypass Vulnerability","published_time":"2022-08-09T19:54:30","cvss":6,"cvss_version":"3.1","epss":0.0177,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34709"],"products":["Windows Server 2019","Windows 10 Version 1507","Windows 10 Version 1607","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows Server version 20H2","Windows 10 Version 21H2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34710","summary":"Windows Defender Credential Guard Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.03783,"ranking_epss":0.88331,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34710","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34710"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-37660","description":"Windows Defender Credential Guard Information Disclosure Vulnerability","published_time":"2022-08-09T19:54:40","cvss":5.5,"cvss_version":"3.1","epss":0.0378,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34710"],"products":["Windows 10 Version 21H2","Windows Server 2016","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2019","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34712","summary":"Windows Defender Credential Guard Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.03422,"ranking_epss":0.87726,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34712","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34712"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-37662","description":"Windows Defender Credential Guard Information Disclosure Vulnerability","published_time":"2022-08-09T19:54:53","cvss":5.5,"cvss_version":"3.1","epss":0.0342,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34712"],"products":["Windows Server version 20H2","Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34714","summary":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.01176,"ranking_epss":0.79132,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34714","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34714"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-37664","description":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","published_time":"2022-08-09T19:55:18","cvss":8.1,"cvss_version":"3.1","epss":0.0118,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34714"],"products":["Windows Server 2019","Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2016","Windows Server 2008 Service Pack 2","Windows 10 Version 21H2","Windows Server 2012","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2022","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 1809","Windows 7","Windows 10 Version 1607","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35760","summary":"Microsoft ATA Port Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01178,"ranking_epss":0.79148,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35760","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35760"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-38633","description":"Microsoft ATA Port Driver Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:56:10","cvss":7.8,"cvss_version":"3.1","epss":0.0118,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35760"],"products":["Windows 10 Version 21H2","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows 8.1","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows 7","Windows 10 Version 1507","Windows Server 2019","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-35761","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02884,"ranking_epss":0.86615,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35761","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35761"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:11","euvd":{"id":"EUVD-2022-38634","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:56:23","cvss":7.8,"cvss_version":"3.1","epss":0.0288,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35761"],"products":["Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2016","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-33670","summary":"Windows Partition Management Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00905,"ranking_epss":0.76199,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33670","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33670"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:10","euvd":{"id":"EUVD-2022-36713","description":"Windows Partition Management Driver Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:50:56","cvss":7.8,"cvss_version":"3.1","epss":0.0091,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33670"],"products":["Windows Server 2019","Windows 11 version 21H2","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012","Windows 10 Version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2016","Windows 10 Version 1607","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34690","summary":"Windows Fax Service Elevation of Privilege Vulnerability","cvss":7.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.1,"cvss_v4":null,"epss":0.00691,"ranking_epss":0.723,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34690","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34690"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:10","euvd":{"id":"EUVD-2022-37640","description":"Windows Fax Service Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:51:44","cvss":7.1,"cvss_version":"3.1","epss":0.0069,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34690"],"products":["Windows 10 Version 21H2","Windows Server 2012","Windows Server 2016","Windows Server 2008 Service Pack 2","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows 7","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2022","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows Server version 20H2","Windows 10 Version 1507","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34691","summary":"Active Directory Domain Services Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.8,"cvss_v4":null,"epss":0.02341,"ranking_epss":0.85213,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34691","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34691"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:10","euvd":{"id":"EUVD-2022-37641","description":"Active Directory Domain Services Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:51:54","cvss":8.8,"cvss_version":"3.1","epss":0.0234,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34691"],"products":["Windows 10 Version 21H1","Windows 8.1","Windows 10 Version 1607","Windows Server 2012 R2","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows Server 2008 Service Pack 2","Windows 10 Version 21H2","Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows 7","Windows Server 2016","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34696","summary":"Windows Hyper-V Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00317,"ranking_epss":0.55221,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34696","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34696"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:10","euvd":null},{"cve_id":"CVE-2022-34699","summary":"Windows Win32k Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.03192,"ranking_epss":0.8727,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34699","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34699"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:10","euvd":{"id":"EUVD-2022-37649","description":"Windows Win32k Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:52:35","cvss":7.8,"cvss_version":"3.1","epss":0.0319,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34699"],"products":["Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2022","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34701","summary":"Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.16399,"ranking_epss":0.95021,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34701","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34701"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:10","euvd":{"id":"EUVD-2022-37651","description":"Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability","published_time":"2022-08-09T19:52:48","cvss":7.5,"cvss_version":"3.1","epss":0.164,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34701"],"products":["Windows Server 2016","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 1607","Windows Server 2008  Service Pack 2","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows Server 2012","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows Server 2012 R2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34702","summary":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":null,"cvss_v3":8.1,"cvss_v4":null,"epss":0.01133,"ranking_epss":0.78765,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34702","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34702"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:10","euvd":{"id":"EUVD-2022-37652","description":"Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability","published_time":"2022-08-09T19:52:58","cvss":8.1,"cvss_version":"3.1","epss":0.0113,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34702"],"products":["Windows 8.1","Windows Server 2019","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows Server 2012 R2","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows 7","Windows Server 2016","Windows 10 Version 1607","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-34703","summary":"Windows Partition Management Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02398,"ranking_epss":0.85383,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34703","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34703"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:10","euvd":{"id":"EUVD-2022-37653","description":"Windows Partition Management Driver Elevation of Privilege Vulnerability","published_time":"2022-08-09T19:53:11","cvss":7.8,"cvss_version":"3.1","epss":0.024,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34703"],"products":["Windows 10 Version 1809","Windows Server 2016","Windows Server 2019","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 1607","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30133","summary":"Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":null,"cvss_v3":9.8,"cvss_v4":null,"epss":0.19101,"ranking_epss":0.9549,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30133","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30133"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:09","euvd":{"id":"EUVD-2022-35341","description":"Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability","published_time":"2022-08-09T19:48:11","cvss":9.8,"cvss_version":"3.1","epss":0.191,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30133"],"products":["Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 7","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012","Windows Server 2016","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows 10 Version 21H2","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30144","summary":"Windows Bluetooth Service Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.00742,"ranking_epss":0.73431,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30144","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30144"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:09","euvd":{"id":"EUVD-2022-35352","description":"Windows Bluetooth Service Remote Code Execution Vulnerability","published_time":"2022-08-09T19:48:37","cvss":7.5,"cvss_version":"3.1","epss":0.0074,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30144"],"products":["Windows 10 Version 1607","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1507","Windows 8.1","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30194","summary":"Windows WebBrowser Control Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":7.5,"cvss_v4":null,"epss":0.02464,"ranking_epss":0.85577,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30194","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30194"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:09","euvd":{"id":"EUVD-2022-35400","description":"Windows WebBrowser Control Remote Code Execution Vulnerability","published_time":"2022-08-09T19:49:19","cvss":7.5,"cvss_version":"3.1","epss":0.0246,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30194"],"products":["Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7","Windows Server 2012","Windows 10 Version 1507","Windows Server 2019","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2","Windows Server 2016","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30197","summary":"Windows Kernel Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":null,"cvss_v3":5.5,"cvss_v4":null,"epss":0.01003,"ranking_epss":0.77452,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30197","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30197"],"vendor":null,"product":null,"version":null,"published_time":"2022-08-09T20:15:09","euvd":{"id":"EUVD-2022-35403","description":"Windows Kernel Information Disclosure Vulnerability","published_time":"2022-08-09T19:49:29","cvss":5.5,"cvss_version":"3.1","epss":0.01,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30197"],"products":["Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30202","summary":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7,"cvss_v4":null,"epss":0.0068,"ranking_epss":0.72072,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30202","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30202"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35408","description":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:26","cvss":7,"cvss_version":"3.1","epss":0.0068,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30202"],"products":["Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 21H2","Windows Server 2008  Service Pack 2","Windows 7 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016","Windows Server 2012","Windows Server version 20H2","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019","Windows Server 2022","Windows 7","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30203","summary":"Windows Boot Manager Security Feature Bypass Vulnerability","cvss":7.4,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.4,"cvss_v4":null,"epss":0.01468,"ranking_epss":0.81324,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30203","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30203"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35409","description":"Windows Boot Manager Security Feature Bypass Vulnerability","published_time":"2022-07-12T22:37:27","cvss":7.4,"cvss_version":"3.1","epss":0.0147,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30203"],"products":["Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows 7","Windows Server version 20H2","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 7 Service Pack 1","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 10 Version 1809","Windows 8.1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows Server 2012 R2","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2016","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30205","summary":"Windows Group Policy Elevation of Privilege Vulnerability","cvss":6.6,"cvss_version":3,"cvss_v2":6,"cvss_v3":6.6,"cvss_v4":null,"epss":0.00909,"ranking_epss":0.76263,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30205","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30205"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35411","description":"Windows Group Policy Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:29","cvss":6.6,"cvss_version":"3.1","epss":0.0091,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30205"],"products":["Windows 10 Version 1507","Windows Server 2012","Windows Server 2022","Windows 8.1","Windows 10 Version 1607","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2008  Service Pack 2","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30206","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.26089,"ranking_epss":0.96409,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30206","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30206"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35412","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:30","cvss":7.8,"cvss_version":"3.1","epss":0.2609,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30206"],"products":["Windows 10 Version 20H2","Windows 7","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2012","Windows Server 2008 Service Pack 2","Windows 8.1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2022","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2019","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30208","summary":"Windows Security Account Manager (SAM) Denial of Service Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4,"cvss_v3":6.5,"cvss_v4":null,"epss":0.05642,"ranking_epss":0.90559,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30208","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30208"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35414","description":"Windows Security Account Manager (SAM) Denial of Service Vulnerability","published_time":"2022-07-12T22:37:32","cvss":6.5,"cvss_version":"3.1","epss":0.0564,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30208"],"products":["Windows 10 Version 1607","Windows 10 Version 1507","Windows Server 2012 R2","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows 10 Version 21H2","Windows Server version 20H2","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2016","Windows Server 2012","Windows 8.1","Windows 7","Windows Server 2016 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30209","summary":"Windows IIS Server Elevation of Privilege Vulnerability","cvss":7.4,"cvss_version":3,"cvss_v2":5.8,"cvss_v3":7.4,"cvss_v4":null,"epss":0.03032,"ranking_epss":0.86952,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30209","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30209"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35415","description":"Windows IIS Server Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:33","cvss":7.4,"cvss_version":"3.1","epss":0.0303,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30209"],"products":["Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 20H2","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012","Windows Server 2012 R2","Windows 10 Version 1607","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 7","Windows Server version 20H2","Windows Server 2019","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30211","summary":"Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":6,"cvss_v3":7.5,"cvss_v4":null,"epss":0.03884,"ranking_epss":0.88516,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30211","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30211"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35417","description":"Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability","published_time":"2022-07-12T22:37:35","cvss":7.5,"cvss_version":"3.1","epss":0.0388,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30211"],"products":["Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows Server 2008 Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows 11 version 21H2","Windows 8.1","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows Server 2022","Windows Server 2012","Windows 10 Version 1607","Windows Server 2008 Service Pack 2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30212","summary":"Windows Connected Devices Platform Service Information Disclosure Vulnerability","cvss":4.7,"cvss_version":3,"cvss_v2":4.7,"cvss_v3":4.7,"cvss_v4":null,"epss":0.00276,"ranking_epss":0.51325,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30212","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30212"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35418","description":"Windows Connected Devices Platform Service Information Disclosure Vulnerability","published_time":"2022-07-12T22:37:37","cvss":4.7,"cvss_version":"3.1","epss":0.0028,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30212"],"products":["Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30213","summary":"Windows GDI+ Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00664,"ranking_epss":0.71668,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30213","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30213"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35419","description":"Windows GDI+ Information Disclosure Vulnerability","published_time":"2022-07-12T22:37:38","cvss":5.5,"cvss_version":"3.1","epss":0.0066,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30213"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2019","Windows 7","Windows Server 2012","Windows Server 2008  Service Pack 2","Windows 10 Version 21H1","Windows Server 2022","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows 10 Version 1607","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30216","summary":"Windows Server Service Tampering Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.5,"cvss_v3":8.8,"cvss_v4":null,"epss":0.5958,"ranking_epss":0.98288,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30216","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30216"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35422","description":"Windows Server Service Tampering Vulnerability","published_time":"2022-07-12T22:37:43","cvss":8.8,"cvss_version":"3.1","epss":0.5958,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30216"],"products":["Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server version 20H2","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30220","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00742,"ranking_epss":0.73434,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30220","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30220"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35426","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:45","cvss":7.8,"cvss_version":"3.1","epss":0.0074,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30220"],"products":["Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server 2012","Windows 11 version 21H2","Windows 7","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server version 20H2","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1809","Windows Server 2022","Windows Server 2019","Windows 8.1","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30221","summary":"Windows Graphics Component Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":8.8,"cvss_v4":null,"epss":0.05003,"ranking_epss":0.89935,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30221","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30221"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35427","description":"Windows Graphics Component Remote Code Execution Vulnerability","published_time":"2022-07-12T22:37:46","cvss":8.8,"cvss_version":"3.1","epss":0.05,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30221"],"products":["Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows Server 2019","Remote Desktop client for Windows Desktop","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows 7","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows 10 Version 1507","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2022","Windows 8.1","Windows Server version 20H2","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30222","summary":"Windows Shell Remote Code Execution Vulnerability","cvss":8.4,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":8.4,"cvss_v4":null,"epss":0.00332,"ranking_epss":0.56438,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30222","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30222"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35428","description":"Windows Shell Remote Code Execution Vulnerability","published_time":"2022-07-12T22:37:48","cvss":8.4,"cvss_version":"3.1","epss":0.0033,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30222"],"products":["Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2016","Windows 10 Version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30223","summary":"Windows Hyper-V Information Disclosure Vulnerability","cvss":5.7,"cvss_version":3,"cvss_v2":2.7,"cvss_v3":5.7,"cvss_v4":null,"epss":0.0289,"ranking_epss":0.86628,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30223","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30223"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35429","description":"Windows Hyper-V Information Disclosure Vulnerability","published_time":"2022-07-12T22:37:49","cvss":5.7,"cvss_version":"3.1","epss":0.0289,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30223"],"products":["Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 10 Version 1607","Windows Server 2012 R2","Windows 8.1","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows Server 2012","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30224","summary":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7,"cvss_v4":null,"epss":0.00489,"ranking_epss":0.65958,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30224","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30224"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35430","description":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:51","cvss":7,"cvss_version":"3.1","epss":0.0049,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30224"],"products":["Windows 10 Version 1607","Windows Server 2016","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows 8.1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 1809","Windows Server 2022","Windows Server 2012","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server version 20H2","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30225","summary":"Windows Media Player Network Sharing Service Elevation of Privilege Vulnerability","cvss":7.1,"cvss_version":3,"cvss_v2":3.6,"cvss_v3":7.1,"cvss_v4":null,"epss":0.00473,"ranking_epss":0.65158,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30225","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30225"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35431","description":"Windows Media Player Network Sharing Service Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:52","cvss":7.1,"cvss_version":"3.1","epss":0.0047,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30225"],"products":["Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 R2","Windows 8.1","Windows 7","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows Server version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows 10 Version 1507","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30226","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.1,"cvss_version":3,"cvss_v2":3.6,"cvss_v3":7.1,"cvss_v4":null,"epss":0.00549,"ranking_epss":0.68404,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30226","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30226"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:11","euvd":{"id":"EUVD-2022-35432","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:53","cvss":7.1,"cvss_version":"3.1","epss":0.0055,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30226"],"products":["Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2","Windows 10 Version 1809","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows 10 Version 1607","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows Server 2008 Service Pack 2","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22043","summary":"Windows Fast FAT File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00553,"ranking_epss":0.68509,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22043","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22043"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:10","euvd":{"id":"EUVD-2022-27197","description":"Windows Fast FAT File System Driver Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:13","cvss":7.8,"cvss_version":"3.1","epss":0.0055,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22043"],"products":["Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows 7","Windows 8.1","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22045","summary":"Windows.Devices.Picker.dll Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00657,"ranking_epss":0.71517,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22045","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22045"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:10","euvd":{"id":"EUVD-2022-27199","description":"Windows.Devices.Picker.dll Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:14","cvss":7.8,"cvss_version":"3.1","epss":0.0066,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22045"],"products":["Windows Server 2019","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 1507","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22048","summary":"BitLocker Security Feature Bypass Vulnerability","cvss":6.1,"cvss_version":3,"cvss_v2":6.6,"cvss_v3":6.1,"cvss_v4":null,"epss":0.00788,"ranking_epss":0.74293,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22048","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22048"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:10","euvd":{"id":"EUVD-2022-27202","description":"BitLocker Security Feature Bypass Vulnerability","published_time":"2022-07-12T22:37:17","cvss":6.1,"cvss_version":"3.1","epss":0.0079,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22048"],"products":["Windows 10 Version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows Server 2016","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 1607","Windows 10 Version 1507","Windows 7","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22049","summary":"Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00708,"ranking_epss":0.7266,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22049","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22049"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:10","euvd":{"id":"EUVD-2022-27203","description":"Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:19","cvss":7.8,"cvss_version":"3.1","epss":0.0071,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22049"],"products":["Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2022","Windows Server version 20H2","Windows 10 Version 1607","Windows 10 Version 20H2","Windows Server 2019","Windows 7","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22050","summary":"Windows Fax Service Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00772,"ranking_epss":0.74013,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22050","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22050"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:10","euvd":{"id":"EUVD-2022-27204","description":"Windows Fax Service Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:20","cvss":7.8,"cvss_version":"3.1","epss":0.0077,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22050"],"products":["Windows Server 2012 R2","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server version 20H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012","Windows Server 2022","Windows 10 Version 20H2","Windows 7","Windows 8.1","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22711","summary":"Windows BitLocker Information Disclosure Vulnerability","cvss":5.7,"cvss_version":3,"cvss_v2":3.3,"cvss_v3":5.7,"cvss_v4":null,"epss":0.0035,"ranking_epss":0.57834,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22711","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22711"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:10","euvd":{"id":"EUVD-2022-27854","description":"Windows BitLocker Information Disclosure Vulnerability","published_time":"2022-07-12T22:37:21","cvss":5.7,"cvss_version":"3.1","epss":0.0035,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22711"],"products":["Windows 11 version 21H2","Windows Server version 20H2","Windows 10 Version 21H1","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 21H2","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22023","summary":"Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability","cvss":6.6,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":6.6,"cvss_v4":null,"epss":0.00278,"ranking_epss":0.51568,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22023","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22023"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27177","description":"Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability","published_time":"2022-07-12T22:36:49","cvss":6.6,"cvss_version":"3.1","epss":0.0028,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22023"],"products":["Windows 10 Version 1507","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 7","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows Server 2012","Windows Server 2022","Windows 10 Version 1809","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22024","summary":"Windows Fax Service Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01578,"ranking_epss":0.81982,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22024","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22024"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27178","description":"Windows Fax Service Remote Code Execution Vulnerability","published_time":"2022-07-12T22:36:50","cvss":7.8,"cvss_version":"3.1","epss":0.0158,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22024"],"products":["Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2019","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2016","Windows 10 Version 20H2","Windows 8.1","Windows Server version 20H2","Windows 10 Version 21H2","Windows 7","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22025","summary":"Windows Internet Information Services Cachuri Module Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.40338,"ranking_epss":0.97444,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22025","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22025"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27179","description":"Windows Internet Information Services Cachuri Module Denial of Service Vulnerability","published_time":"2022-07-12T22:36:52","cvss":7.5,"cvss_version":"3.1","epss":0.4034,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22025"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2016","Windows 10 Version 1607","Windows Server version 20H2","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows 10 Version 1809","Windows Server 2019","Windows 7","Windows Server 2012","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22026","summary":"Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":8.8,"cvss_v4":null,"epss":0.00547,"ranking_epss":0.68292,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22026","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22026"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27180","description":"Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:36:53","cvss":8.8,"cvss_version":"3.1","epss":0.0055,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22026"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows 11 version 21H2","Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows 7","Windows 8.1","Windows Server 2022","Windows 10 Version 21H1","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22027","summary":"Windows Fax Service Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02635,"ranking_epss":0.86029,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22027","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22027"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27181","description":"Windows Fax Service Remote Code Execution Vulnerability","published_time":"2022-07-12T22:36:54","cvss":7.8,"cvss_version":"3.1","epss":0.0264,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22027"],"products":["Windows 10 Version 1809","Windows 10 Version 1607","Windows 7","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2","Windows Server 2012","Windows Server 2019","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1507","Windows Server 2012 R2","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22031","summary":"Windows Credential Guard Domain-joined Public Key Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.002,"ranking_epss":0.42012,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22031","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22031"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27185","description":"Windows Credential Guard Domain-joined Public Key Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:36:59","cvss":7.8,"cvss_version":"3.1","epss":0.002,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22031"],"products":["Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2019","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22034","summary":"Windows Graphics Component Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00645,"ranking_epss":0.71193,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22034","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22034"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27188","description":"Windows Graphics Component Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:01","cvss":7.8,"cvss_version":"3.1","epss":0.0065,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22034"],"products":["Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server version 20H2","Windows Server 2019","Windows 8.1","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2016","Windows 7","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22036","summary":"Performance Counters for Windows Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00505,"ranking_epss":0.66647,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22036","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22036"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27190","description":"Performance Counters for Windows Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:02","cvss":7,"cvss_version":"3.1","epss":0.0051,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22036"],"products":["Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 1507","Windows 11 version 21H2","Windows 8.1","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012","Windows 7","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 7 Service Pack 1","Windows Server 2012 R2","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22037","summary":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":8.5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.08437,"ranking_epss":0.92526,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22037","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22037"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27191","description":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:04","cvss":7.5,"cvss_version":"3.1","epss":0.0844,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22037"],"products":["Windows 10 Version 21H1","Windows 7 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1607","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2012 R2","Windows Server 2012","Windows 10 Version 1809","Windows 8.1","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2016","Windows Server version 20H2","Windows 10 Version 20H2","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22038","summary":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":8.1,"cvss_v4":null,"epss":0.04827,"ranking_epss":0.8975,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22038","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22038"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27192","description":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","published_time":"2022-07-12T22:37:05","cvss":8.1,"cvss_version":"3.1","epss":0.0483,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22038"],"products":["Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2019","Windows 11 version 21H2","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22040","summary":"Internet Information Services Dynamic Compression Module Denial of Service Vulnerability","cvss":7.3,"cvss_version":3,"cvss_v2":7.5,"cvss_v3":7.3,"cvss_v4":null,"epss":0.03581,"ranking_epss":0.88014,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22040","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22040"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27194","description":"Internet Information Services Dynamic Compression Module Denial of Service Vulnerability","published_time":"2022-07-12T22:37:08","cvss":7.3,"cvss_version":"3.1","epss":0.0358,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22040"],"products":["Windows 7","Windows Server 2008 Service Pack 2","Windows 8.1","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows Server 2016","Windows Server 2019","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows Server 2022","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22041","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":8.5,"cvss_v3":6.8,"cvss_v4":null,"epss":0.04458,"ranking_epss":0.8932,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22041","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22041"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27195","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:37:10","cvss":6.8,"cvss_version":"3.1","epss":0.0446,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22041"],"products":["Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2019","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1607","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2012","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22042","summary":"Windows Hyper-V Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4,"cvss_v3":6.5,"cvss_v4":null,"epss":0.17586,"ranking_epss":0.95242,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22042","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22042"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:09","euvd":{"id":"EUVD-2022-27196","description":"Windows Hyper-V Information Disclosure Vulnerability","published_time":"2022-07-12T22:37:11","cvss":6.5,"cvss_version":"3.1","epss":0.1759,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22042"],"products":["Windows Server 2012","Windows 8.1","Windows 10 Version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server version 20H2","Windows Server 2016","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1607","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21845","summary":"Windows Kernel Information Disclosure Vulnerability","cvss":4.7,"cvss_version":3,"cvss_v2":4.7,"cvss_v3":4.7,"cvss_v4":null,"epss":0.00663,"ranking_epss":0.71653,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21845","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21845"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:08","euvd":{"id":"EUVD-2022-27001","description":"Windows Kernel Information Disclosure Vulnerability","published_time":"2022-07-12T22:36:46","cvss":4.7,"cvss_version":"3.1","epss":0.0066,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21845"],"products":["Windows Server 2016","Windows 11 version 21H2","Windows Server 2022","Windows Server version 20H2","Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008  Service Pack 2","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22022","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.1,"cvss_version":3,"cvss_v2":3.6,"cvss_v3":7.1,"cvss_v4":null,"epss":0.0056,"ranking_epss":0.68727,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22022","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22022"],"vendor":null,"product":null,"version":null,"published_time":"2022-07-12T23:15:08","euvd":{"id":"EUVD-2022-27176","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-07-12T22:36:47","cvss":7.1,"cvss_version":"3.1","epss":0.0056,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22022"],"products":["Windows Server version 20H2","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2008  Service Pack 2","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 1607","Windows 7","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30150","summary":"Windows Defender Remote Credential Guard Elevation of Privilege Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":6,"cvss_v3":7.5,"cvss_v4":null,"epss":0.02347,"ranking_epss":0.85232,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30150","http://packetstormsecurity.com/files/167697/Windows-Defender-Remote-Credential-Guard-Authentication-Relay-Privilege-Escalation.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30150"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35358","description":"Windows Defender Remote Credential Guard Elevation of Privilege Vulnerability","published_time":"2022-06-15T21:51:40","cvss":7.5,"cvss_version":"3.1","epss":0.0235,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30150"],"products":["Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows Server 2016","Windows 11 version 21H2","Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30151","summary":"Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.0038,"ranking_epss":0.59858,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30151","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30151"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35359","description":"Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability","published_time":"2022-06-15T21:51:42","cvss":7,"cvss_version":"3.1","epss":0.0038,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30151"],"products":["Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows 8.1","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2012","Windows 10 Version 1607","Windows Server 2016","Windows Server 2012 R2","Windows Server version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30152","summary":"Windows Network Address Translation (NAT) Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.25242,"ranking_epss":0.96318,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30152","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30152"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35360","description":"Windows Network Address Translation (NAT) Denial of Service Vulnerability","published_time":"2022-06-15T21:51:43","cvss":7.5,"cvss_version":"3.1","epss":0.2524,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30152"],"products":["Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows Server 2022","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows 8.1","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809","Windows 7","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012","Windows Server version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2019","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30153","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":8.8,"cvss_v4":null,"epss":0.10873,"ranking_epss":0.93548,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30153","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30153"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35361","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:45","cvss":8.8,"cvss_version":"3.1","epss":0.1087,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30153"],"products":["Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows Server 2019","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2012","Windows 7","Windows Server 2008 Service Pack 2","Windows Server version 20H2","Windows Server 2008  Service Pack 2","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30155","summary":"Windows Kernel Denial of Service Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":7.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.02407,"ranking_epss":0.85416,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30155","http://packetstormsecurity.com/files/167755/Windows-Kernel-nt-MiRelocateImage-Invalid-Read.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30155"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35363","description":"Windows Kernel Denial of Service Vulnerability","published_time":"2022-06-15T21:51:48","cvss":5.5,"cvss_version":"3.1","epss":0.0241,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30155"],"products":["Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows 7","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows Server 2016","Windows 10 Version 1507","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30160","summary":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.05423,"ranking_epss":0.90364,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30160","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30160"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35368","description":"Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability","published_time":"2022-06-15T21:51:53","cvss":7.8,"cvss_version":"3.1","epss":0.0542,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30160"],"products":["Windows Server version 20H2","Windows 10 Version 1507","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2022","Windows Server 2008 Service Pack 2","Windows 7","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2012","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows Server 2016","Windows Server 2012 R2","Windows 8.1","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30161","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":8.8,"cvss_v4":null,"epss":0.10873,"ranking_epss":0.93548,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30161","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30161"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35369","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:55","cvss":8.8,"cvss_version":"3.1","epss":0.1087,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30161"],"products":["Windows 10 Version 1809","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 7 Service Pack 1","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2022","Windows Server 2012 R2","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1507","Windows Server version 20H2","Windows 10 Version 1607","Windows Server 2008 Service Pack 2","Windows 7","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30162","summary":"Windows Kernel Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00455,"ranking_epss":0.64303,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30162","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30162"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35370","description":"Windows Kernel Information Disclosure Vulnerability","published_time":"2022-06-15T21:51:56","cvss":5.5,"cvss_version":"3.1","epss":0.0046,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30162"],"products":["Windows 10 Version 21H1","Windows 10 Version 1507","Windows 10 Version 20H2","Windows Server 2019","Windows 10 Version 1809","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2016","Windows Server version 20H2","Windows 8.1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30163","summary":"Windows Hyper-V Remote Code Execution Vulnerability","cvss":8.5,"cvss_version":3,"cvss_v2":6,"cvss_v3":8.5,"cvss_v4":null,"epss":0.00592,"ranking_epss":0.69706,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30163","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30163"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35371","description":"Windows Hyper-V Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:58","cvss":8.5,"cvss_version":"3.1","epss":0.0059,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30163"],"products":["Windows Server 2016","Windows 10 Version 1809","Windows Server 2012","Windows 10 Version 21H1","Windows Server 2012 R2","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30164","summary":"Kerberos AppContainer Security Feature Bypass Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00925,"ranking_epss":0.76477,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30164","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30164"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35372","description":"Kerberos AppContainer Security Feature Bypass Vulnerability","published_time":"2022-06-15T21:51:59","cvss":7.8,"cvss_version":"3.1","epss":0.0093,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30164"],"products":["Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012","Windows 10 Version 1607","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 8.1","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 20H2","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30165","summary":"Windows Kerberos Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.5,"cvss_v3":8.8,"cvss_v4":null,"epss":0.07407,"ranking_epss":0.91924,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30165","http://packetstormsecurity.com/files/167711/Windows-Kerberos-Redirected-Logon-Buffer-Privilege-Escalation.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30165"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35373","description":"Windows Kerberos Elevation of Privilege Vulnerability","published_time":"2022-06-15T21:52:01","cvss":8.8,"cvss_version":"3.1","epss":0.0741,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30165"],"products":["Windows Server 2016","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2022","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30166","summary":"Local Security Authority Subsystem Service Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.07554,"ranking_epss":0.92016,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30166","http://packetstormsecurity.com/files/167754/Windows-LSA-Service-LsapGetClientInfo-Impersonation-Level-Check-Privilege-Escalation.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30166"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:14","euvd":{"id":"EUVD-2022-35374","description":"Local Security Authority Subsystem Service Elevation of Privilege Vulnerability","published_time":"2022-06-15T21:52:04","cvss":7.8,"cvss_version":"3.1","epss":0.0755,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30166"],"products":["Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1507","Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server version 20H2","Windows 8.1","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows 7","Windows 11 version 21H2","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows Server 2019","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30132","summary":"Windows Container Manager Service Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00572,"ranking_epss":0.69163,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30132","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30132"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35340","description":"Windows Container Manager Service Elevation of Privilege Vulnerability","published_time":"2022-06-15T21:51:19","cvss":7.8,"cvss_version":"3.1","epss":0.0057,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30132"],"products":["Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30139","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":6,"cvss_v3":7.5,"cvss_v4":null,"epss":0.05035,"ranking_epss":0.89966,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30139","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30139"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35347","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:25","cvss":7.5,"cvss_version":"3.1","epss":0.0504,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30139"],"products":["Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 20H2","Windows Server 2022","Windows 11 version 21H2","Windows Server 2019","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30140","summary":"Windows iSCSI Discovery Service Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.022,"ranking_epss":0.84782,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30140","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30140"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35348","description":"Windows iSCSI Discovery Service Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:27","cvss":7.5,"cvss_version":"3.1","epss":0.022,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30140"],"products":["Windows 7 Service Pack 1","Windows Server 2016","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2012","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows 7","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 8.1","Windows 10 Version 1607","Windows Server 2019","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows Server version 20H2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30141","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":8.1,"cvss_v4":null,"epss":0.09818,"ranking_epss":0.93143,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30141","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30141"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35349","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:28","cvss":8.1,"cvss_version":"3.1","epss":0.0982,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30141"],"products":["Windows Server 2012 R2","Windows 11 version 21H2","Windows 8.1","Windows 10 Version 20H2","Windows 7","Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 1607","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2016","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2012","Windows Server 2022","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30142","summary":"Windows File History Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":7.6,"cvss_v3":7.5,"cvss_v4":null,"epss":0.04711,"ranking_epss":0.89611,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30142","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30142"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35350","description":"Windows File History Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:30","cvss":7.5,"cvss_version":"3.1","epss":0.0471,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30142"],"products":["Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows Server 2016","Windows 8.1","Windows 7","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30143","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.05102,"ranking_epss":0.90042,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30143","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30143"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35351","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:31","cvss":7.5,"cvss_version":"3.1","epss":0.051,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30143"],"products":["Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows Server 2012","Windows Server version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 7","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 1607","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2016","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30145","summary":"Windows Encrypting File System (EFS) Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":6,"cvss_v3":7.5,"cvss_v4":null,"epss":0.05427,"ranking_epss":0.90369,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30145","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30145"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35353","description":"Windows Encrypting File System (EFS) Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:33","cvss":7.5,"cvss_version":"3.1","epss":0.0543,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30145"],"products":["Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1607","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2019","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30146","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.05102,"ranking_epss":0.90042,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30146","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30146"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35354","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:34","cvss":7.5,"cvss_version":"3.1","epss":0.051,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30146"],"products":["Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019","Windows 7","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows Server 2016","Windows Server 2012 R2","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30147","summary":"Windows Installer Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01449,"ranking_epss":0.81201,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30147","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30147"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35355","description":"Windows Installer Elevation of Privilege Vulnerability","published_time":"2022-06-15T21:51:36","cvss":7.8,"cvss_version":"3.1","epss":0.0145,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30147"],"products":["Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server version 20H2","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1809","Windows 7","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows Server 2019","Windows 8.1","Windows Server 2012","Windows 10 Version 21H1","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30148","summary":"Windows Desired State Configuration (DSC) Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00687,"ranking_epss":0.72201,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30148","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30148"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35356","description":"Windows Desired State Configuration (DSC) Information Disclosure Vulnerability","published_time":"2022-06-15T21:51:37","cvss":5.5,"cvss_version":"3.1","epss":0.0069,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30148"],"products":["Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows Server version 20H2","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 20H2","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30149","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.05102,"ranking_epss":0.90042,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30149","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30149"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-15T22:15:13","euvd":{"id":"EUVD-2022-35357","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-06-15T21:51:39","cvss":7.5,"cvss_version":"3.1","epss":0.051,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30149"],"products":["Windows Server 2012 R2","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 1507","Windows 8.1","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows Server 2012","Windows Server 2016","Windows 10 Version 1809","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-32230","summary":"Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot.","cvss":7.5,"cvss_version":3,"cvss_v2":7.8,"cvss_v3":7.5,"cvss_v4":null,"epss":0.31158,"ranking_epss":0.96876,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://github.com/zeroSteiner/metasploit-framework/blob/feat/mod/cve-2022-32230/modules/auxiliary/dos/smb/smb_filenormalizednameinformation.rb","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-32230","https://support.microsoft.com/en-us/topic/may-10-2022-kb5013942-os-builds-19042-1706-19043-1706-and-19044-1706-60b51119-85be-4a34-9e21-8954f6749504","https://www.rapid7.com/blog/post/2022/06/14/cve-2022-32230-windows-smb-denial-of-service-vulnerability-fixed/","https://github.com/zeroSteiner/metasploit-framework/blob/feat/mod/cve-2022-32230/modules/auxiliary/dos/smb/smb_filenormalizednameinformation.rb","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-32230","https://support.microsoft.com/en-us/topic/may-10-2022-kb5013942-os-builds-19042-1706-19043-1706-and-19044-1706-60b51119-85be-4a34-9e21-8954f6749504","https://www.rapid7.com/blog/post/2022/06/14/cve-2022-32230-windows-smb-denial-of-service-vulnerability-fixed/"],"vendor":null,"product":null,"version":null,"published_time":"2022-06-14T22:15:10","euvd":{"id":"EUVD-2022-53430","description":"Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot.","published_time":"2022-06-14T21:40:12","cvss":7.5,"cvss_version":"3.1","epss":0.3116,"assigner":"rapid7","references":["https://www.rapid7.com/blog/post/2022/06/14/cve-2022-32230-windows-smb-denial-of-service-vulnerability-fixed/","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-32230","https://github.com/zeroSteiner/metasploit-framework/blob/feat/mod/cve-2022-32230/modules/auxiliary/dos/smb/smb_filenormalizednameinformation.rb","https://support.microsoft.com/en-us/topic/may-10-2022-kb5013942-os-builds-19042-1706-19043-1706-and-19044-1706-60b51119-85be-4a34-9e21-8954f6749504"],"products":["Windows 10 Version 21H2","Windows 10 Version 21H2","Windows Server version 20H2","Windows Server version 20H2","Windows 10 Version 21H1","Windows Server version 20H2","Windows Server version 20H2","Windows 10 Version 21H2","Windows Server version 20H2","Windows 10 Version 21H1","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 10 Version 20H2","Windows 10 Version 20H2","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30138","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01514,"ranking_epss":0.8162,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30138","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30138"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-18T23:15:07","euvd":{"id":"EUVD-2022-35346","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-05-18T23:10:09","cvss":7.8,"cvss_version":"3.1","epss":0.0151,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30138"],"products":["Windows Server 2022","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2012","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 21H1","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2008  Service Pack 2","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-30130","summary":".NET Framework Denial of Service Vulnerability","cvss":3.3,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":3.3,"cvss_v4":null,"epss":0.0435,"ranking_epss":0.8918,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30130","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30130"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:13","euvd":{"id":"EUVD-2022-35338","description":".NET Framework Denial of Service Vulnerability","published_time":"2022-05-10T20:35:04","cvss":3.3,"cvss_version":"3.1","epss":0.0435,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30130"],"products":["Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2","Microsoft .NET Framework 4.6.2","Microsoft .NET Framework 3.5 AND 4.6/4.6.2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29125","summary":"Windows Push Notifications Apps Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00147,"ranking_epss":0.34946,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29125","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29125"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33535","description":"Windows Push Notifications Apps Elevation of Privilege Vulnerability","published_time":"2022-05-10T20:34:30","cvss":7,"cvss_version":"3.1","epss":0.0015,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29125"],"products":["Windows 10 Version 21H1","Windows 10 Version 1507","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows 8.1","Windows 10 Version 1909","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29126","summary":"Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7,"cvss_v4":null,"epss":0.00285,"ranking_epss":0.52341,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29126","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29126"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33536","description":"Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability","published_time":"2022-05-10T20:34:32","cvss":7,"cvss_version":"3.1","epss":0.0029,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29126"],"products":["Windows 11 version 21H2","Windows 10 Version 1507","Windows 8.1","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 1909","Windows Server 2012","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2016","Windows Server version 20H2","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29127","summary":"BitLocker Security Feature Bypass Vulnerability","cvss":4.2,"cvss_version":3,"cvss_v2":1.9,"cvss_v3":4.2,"cvss_v4":null,"epss":0.00291,"ranking_epss":0.52872,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29127","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29127"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33537","description":"BitLocker Security Feature Bypass Vulnerability","published_time":"2022-05-10T20:34:33","cvss":4.2,"cvss_version":"3.1","epss":0.0029,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29127"],"products":["Windows 8.1","Windows 10 Version 1909","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 1809","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows 7","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29128","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9,"cvss_v3":8.8,"cvss_v4":null,"epss":0.14363,"ranking_epss":0.94571,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29128","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29128"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33538","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-05-10T20:34:35","cvss":8.8,"cvss_version":"3.1","epss":0.1436,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29128"],"products":["Windows 10 Version 1507","Windows Server 2008  Service Pack 2","Windows Server 2019","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 11 version 21H2","Windows Server 2022","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows Server 2016","Windows 7","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29129","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9,"cvss_v3":8.8,"cvss_v4":null,"epss":0.14363,"ranking_epss":0.94571,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29129","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29129"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33539","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-05-10T20:34:36","cvss":8.8,"cvss_version":"3.1","epss":0.1436,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29129"],"products":["Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows Server 2019","Windows 10 Version 20H2","Windows Server version 20H2","Windows 11 version 21H2","Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows 7","Windows Server 2016","Windows Server 2008  Service Pack 2","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows Server 2022","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29130","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":9.8,"cvss_v4":null,"epss":0.12239,"ranking_epss":0.94009,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29130","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29130"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33540","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-05-10T20:34:37","cvss":9.8,"cvss_version":"3.1","epss":0.1224,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29130"],"products":["Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows 10 Version 1909","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows 7","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server version 20H2","Windows Server 2019","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29131","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13231,"ranking_epss":0.94305,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29131","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29131"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33541","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-05-10T20:34:39","cvss":8.8,"cvss_version":"3.1","epss":0.1323,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29131"],"products":["Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1909","Windows Server 2022","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2019","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29132","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00497,"ranking_epss":0.66269,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29132","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29132"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33542","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-05-10T20:34:41","cvss":7.8,"cvss_version":"3.1","epss":0.005,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29132"],"products":["Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows Server 2012 R2","Windows Server 2016","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows 8.1","Windows 10 Version 1909","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29133","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":8.8,"cvss_v4":null,"epss":0.00278,"ranking_epss":0.51556,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29133","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29133"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33543","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-05-10T20:34:43","cvss":8.8,"cvss_version":"3.1","epss":0.0028,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29133"],"products":["Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29137","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.5,"cvss_v3":8.8,"cvss_v4":null,"epss":0.15664,"ranking_epss":0.94859,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29137","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29137"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33547","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-05-10T20:34:47","cvss":8.8,"cvss_version":"3.1","epss":0.1566,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29137"],"products":["Windows Server 2008 Service Pack 2","Windows Server version 20H2","Windows Server 2019","Windows 10 Version 1507","Windows 11 version 21H2","Windows 8.1","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server 2012 R2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1909","Windows 10 Version 21H2","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29139","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":8.8,"cvss_v4":null,"epss":0.10873,"ranking_epss":0.93548,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29139","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29139"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33549","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-05-10T20:34:50","cvss":8.8,"cvss_version":"3.1","epss":0.1087,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29139"],"products":["Windows 7 Service Pack 1","Windows Server version 20H2","Windows Server 2022","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1909","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 8.1","Windows 11 version 21H2","Windows Server 2012","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows 10 Version 1607","Windows Server 2019","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29140","summary":"Windows Print Spooler Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.01609,"ranking_epss":0.82167,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29140","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29140"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33550","description":"Windows Print Spooler Information Disclosure Vulnerability","published_time":"2022-05-10T20:34:52","cvss":5.5,"cvss_version":"3.1","epss":0.0161,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29140"],"products":["Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2019","Windows Server 2016","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29141","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.5,"cvss_v3":8.8,"cvss_v4":null,"epss":0.13677,"ranking_epss":0.94421,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29141","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29141"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:12","euvd":{"id":"EUVD-2022-33551","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-05-10T20:34:53","cvss":8.8,"cvss_version":"3.1","epss":0.1368,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29141"],"products":["Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2019","Windows Server version 20H2","Windows Server 2008 Service Pack 2","Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 R2","Windows 10 Version 21H2","Windows Server 2022","Windows 7","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29103","summary":"Windows Remote Access Connection Manager Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00327,"ranking_epss":0.56063,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29103","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29103"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:11","euvd":{"id":"EUVD-2022-33514","description":"Windows Remote Access Connection Manager Elevation of Privilege Vulnerability","published_time":"2022-05-10T20:34:04","cvss":7.8,"cvss_version":"3.1","epss":0.0033,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29103"],"products":["Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1507","Windows 7","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server version 20H2","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29104","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0152,"ranking_epss":0.81647,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29104","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29104"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:11","euvd":{"id":"EUVD-2022-33515","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-05-10T20:34:05","cvss":7.8,"cvss_version":"3.1","epss":0.0152,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29104"],"products":["Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 1607","Windows 10 Version 21H2","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server 2012 R2","Windows Server 2016","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows Server 2022","Windows 11 version 21H2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29105","summary":"Microsoft Windows Media Foundation Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02819,"ranking_epss":0.86472,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29105","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29105"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:11","euvd":{"id":"EUVD-2022-33516","description":"Microsoft Windows Media Foundation Remote Code Execution Vulnerability","published_time":"2022-05-10T20:34:07","cvss":7.8,"cvss_version":"3.1","epss":0.0282,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29105"],"products":["Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2012 R2","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows Server version 20H2","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29112","summary":"Windows Graphics Component Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":6.5,"cvss_v4":null,"epss":0.13905,"ranking_epss":0.94478,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29112","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29112"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:11","euvd":{"id":"EUVD-2022-33523","description":"Windows Graphics Component Information Disclosure Vulnerability","published_time":"2022-05-10T20:34:15","cvss":6.5,"cvss_version":"3.1","epss":0.1391,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29112"],"products":["Windows Server 2008  Service Pack 2","Windows Server 2016","Windows Server 2012 R2","Windows Server 2019","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1607","Windows 10 Version 21H2","Windows Server version 20H2","Windows 7 Service Pack 1","Windows 7","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1909","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows Server 2022","Windows 10 Version 1809","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29113","summary":"Windows Digital Media Receiver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00205,"ranking_epss":0.42707,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29113","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29113"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:11","euvd":{"id":"EUVD-2022-33524","description":"Windows Digital Media Receiver Elevation of Privilege Vulnerability","published_time":"2022-05-10T20:34:17","cvss":7.8,"cvss_version":"3.1","epss":0.0021,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29113"],"products":["Windows 10 Version 1909","Windows Server version 20H2","Windows 10 Version 20H2","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29114","summary":"Windows Print Spooler Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00478,"ranking_epss":0.65432,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29114","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29114"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:11","euvd":{"id":"EUVD-2022-33525","description":"Windows Print Spooler Information Disclosure Vulnerability","published_time":"2022-05-10T20:34:18","cvss":5.5,"cvss_version":"3.1","epss":0.0048,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29114"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows Server version 20H2","Windows Server 2016","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2019","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows 8.1","Windows Server 2012","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29115","summary":"Windows Fax Service Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02819,"ranking_epss":0.86472,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29115","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29115"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:11","euvd":{"id":"EUVD-2022-33526","description":"Windows Fax Service Remote Code Execution Vulnerability","published_time":"2022-05-10T20:34:20","cvss":7.8,"cvss_version":"3.1","epss":0.0282,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29115"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 8.1","Windows Server 2016","Windows Server version 20H2","Windows 7 Service Pack 1","Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 7","Windows Server 2022","Windows 10 Version 1507","Windows Server 2019","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29116","summary":"Windows Kernel Information Disclosure Vulnerability","cvss":4.7,"cvss_version":3,"cvss_v2":4.7,"cvss_v3":4.7,"cvss_v4":null,"epss":0.00337,"ranking_epss":0.5688,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29116","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29116"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:11","euvd":{"id":"EUVD-2022-33527","description":"Windows Kernel Information Disclosure Vulnerability","published_time":"2022-05-10T20:34:21","cvss":4.7,"cvss_version":"3.1","epss":0.0034,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29116"],"products":["Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-29121","summary":"Windows WLAN AutoConfig Service Denial of Service Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":3.3,"cvss_v3":6.5,"cvss_v4":null,"epss":0.00361,"ranking_epss":0.58638,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29121","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29121"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:11","euvd":{"id":"EUVD-2022-33531","description":"Windows WLAN AutoConfig Service Denial of Service Vulnerability","published_time":"2022-05-10T20:34:26","cvss":6.5,"cvss_version":"3.1","epss":0.0036,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29121"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2016","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows Server 2012 R2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows 10 Version 1809","Windows Server 2012","Windows Server version 20H2","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24466","summary":"Windows Hyper-V Security Feature Bypass Vulnerability","cvss":4.1,"cvss_version":3,"cvss_v2":2.3,"cvss_v3":4.1,"cvss_v4":null,"epss":0.01131,"ranking_epss":0.78746,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24466","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-24466"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:10","euvd":{"id":"EUVD-2022-29347","description":"Windows Hyper-V Security Feature Bypass Vulnerability","published_time":"2022-05-10T20:33:36","cvss":4.1,"cvss_version":"3.1","epss":0.0113,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24466"],"products":["Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 1909","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26913","summary":"Windows Authentication Information Disclosure Vulnerability","cvss":7.4,"cvss_version":3,"cvss_v2":5.8,"cvss_v3":7.4,"cvss_v4":null,"epss":0.0396,"ranking_epss":0.88632,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26913","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26913"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:10","euvd":{"id":"EUVD-2022-31459","description":"Windows Authentication Information Disclosure Vulnerability","published_time":"2022-05-10T20:33:38","cvss":7.4,"cvss_version":"3.1","epss":0.0396,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26913"],"products":["Windows 10 Version 1809","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 20H2","Windows 10 Version 1909","Windows Server 2019","Windows Server 2022","Windows 10 Version 21H2","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26926","summary":"Windows Address Book Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01681,"ranking_epss":0.8259,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26926","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26926"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:10","euvd":{"id":"EUVD-2022-31471","description":"Windows Address Book Remote Code Execution Vulnerability","published_time":"2022-05-10T20:33:42","cvss":7.8,"cvss_version":"3.1","epss":0.0168,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26926"],"products":["Windows 7","Windows Server 2012","Windows 11 version 21H2","Windows Server 2016","Windows 10 Version 1909","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows Server 2008  Service Pack 2","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26927","summary":"Windows Graphics Component Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":8.8,"cvss_v4":null,"epss":0.28121,"ranking_epss":0.96594,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26927","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26927"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:10","euvd":{"id":"EUVD-2022-31472","description":"Windows Graphics Component Remote Code Execution Vulnerability","published_time":"2022-05-10T20:33:44","cvss":8.8,"cvss_version":"3.1","epss":0.2812,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26927"],"products":["Windows 10 Version 1909","Windows Server 2019","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server 2022","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26930","summary":"Windows Remote Access Connection Manager Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.01242,"ranking_epss":0.79678,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26930","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26930"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:10","euvd":{"id":"EUVD-2022-31475","description":"Windows Remote Access Connection Manager Information Disclosure Vulnerability","published_time":"2022-05-10T20:33:46","cvss":5.5,"cvss_version":"3.1","epss":0.0124,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26930"],"products":["Windows 10 Version 20H2","Windows Server 2022","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1909","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2012","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1507","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26931","summary":"Windows Kerberos Elevation of Privilege Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":6,"cvss_v3":7.5,"cvss_v4":null,"epss":0.01665,"ranking_epss":0.82495,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26931","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26931"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:10","euvd":{"id":"EUVD-2022-31476","description":"Windows Kerberos Elevation of Privilege Vulnerability","published_time":"2022-05-10T20:33:47","cvss":7.5,"cvss_version":"3.1","epss":0.0167,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26931"],"products":["Windows 10 Version 1507","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2022","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows Server 2016","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26933","summary":"Windows NTFS Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00468,"ranking_epss":0.64936,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26933","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26933"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:10","euvd":{"id":"EUVD-2022-31478","description":"Windows NTFS Information Disclosure Vulnerability","published_time":"2022-05-10T20:33:50","cvss":5.5,"cvss_version":"3.1","epss":0.0047,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26933"],"products":["Windows Server version 20H2","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows Server 2022","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2019","Windows Server 2012","Windows 10 Version 20H2","Windows Server 2016","Windows 11 version 21H2","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26935","summary":"Windows WLAN AutoConfig Service Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":3.3,"cvss_v3":6.5,"cvss_v4":null,"epss":0.00519,"ranking_epss":0.67246,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26935","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26935"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:10","euvd":{"id":"EUVD-2022-31480","description":"Windows WLAN AutoConfig Service Information Disclosure Vulnerability","published_time":"2022-05-10T20:33:53","cvss":6.5,"cvss_version":"3.1","epss":0.0052,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26935"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 1909","Windows 8.1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows 7","Windows Server 2012 R2","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 1507","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26936","summary":"Windows Server Service Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4,"cvss_v3":6.5,"cvss_v4":null,"epss":0.17959,"ranking_epss":0.95302,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26936","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26936"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:10","euvd":{"id":"EUVD-2022-31481","description":"Windows Server Service Information Disclosure Vulnerability","published_time":"2022-05-10T20:33:55","cvss":6.5,"cvss_version":"3.1","epss":0.1796,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26936"],"products":["Windows Server 2012","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows 8.1","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows 7","Windows 10 Version 1809","Windows Server 2019","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26940","summary":"Remote Desktop Protocol Client Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4,"cvss_v3":6.5,"cvss_v4":null,"epss":0.1635,"ranking_epss":0.95008,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26940","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26940"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:10","euvd":{"id":"EUVD-2022-31485","description":"Remote Desktop Protocol Client Information Disclosure Vulnerability","published_time":"2022-05-10T20:34:01","cvss":6.5,"cvss_version":"3.1","epss":0.1635,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26940"],"products":["Windows 11 version 21H2","Windows Server 2022","Remote Desktop client for Windows Desktop"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21972","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":8.1,"cvss_v4":null,"epss":0.48559,"ranking_epss":0.97816,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21972","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21972"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:09","euvd":{"id":"EUVD-2022-27127","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-05-10T20:33:13","cvss":8.1,"cvss_version":"3.1","epss":0.4856,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21972"],"products":["Windows Server 2012","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 7","Windows Server 2012 R2","Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 1909","Windows Server 2008  Service Pack 2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server 2019","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 8.1","Windows Server 2008 Service Pack 2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22012","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":9.8,"cvss_v4":null,"epss":0.13486,"ranking_epss":0.94372,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22012","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-22012"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:09","euvd":{"id":"EUVD-2022-27166","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-05-10T20:33:18","cvss":9.8,"cvss_version":"3.1","epss":0.1349,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22012"],"products":["Windows 7","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows Server 2008 Service Pack 2","Windows 10 Version 1909","Windows Server 2012","Windows 10 Version 1607","Windows Server 2008  Service Pack 2","Windows Server 2012 R2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 10 Version 1507","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22013","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.5,"cvss_v3":8.8,"cvss_v4":null,"epss":0.15664,"ranking_epss":0.94859,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22013","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-22013"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:09","euvd":{"id":"EUVD-2022-27167","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-05-10T20:33:20","cvss":8.8,"cvss_version":"3.1","epss":0.1566,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22013"],"products":["Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2008 Service Pack 2","Windows Server version 20H2","Windows Server 2019","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows 7","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows 10 Version 20H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22014","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.5,"cvss_v3":8.8,"cvss_v4":null,"epss":0.15664,"ranking_epss":0.94859,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22014","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-22014"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:09","euvd":{"id":"EUVD-2022-27168","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-05-10T20:33:22","cvss":8.8,"cvss_version":"3.1","epss":0.1566,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22014"],"products":["Windows 10 Version 21H2","Windows 10 Version 1909","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows Server 2019","Windows 8.1","Windows 10 Version 1809","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2016","Windows 7","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22015","summary":"Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4,"cvss_v3":6.5,"cvss_v4":null,"epss":0.16112,"ranking_epss":0.94947,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22015","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-22015"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:09","euvd":{"id":"EUVD-2022-27169","description":"Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability","published_time":"2022-05-10T20:33:24","cvss":6.5,"cvss_version":"3.1","epss":0.1611,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22015"],"products":["Windows 10 Version 1809","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2012","Windows Server 2012 R2","Windows Server 2016","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows Server 2022","Remote Desktop client for Windows Desktop","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 8.1","Windows 10 Version 1909","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22016","summary":"Windows PlayToManager Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00245,"ranking_epss":0.48102,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22016","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-22016"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:09","euvd":{"id":"EUVD-2022-27170","description":"Windows PlayToManager Elevation of Privilege Vulnerability","published_time":"2022-05-10T20:33:26","cvss":7,"cvss_version":"3.1","epss":0.0025,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22016"],"products":["Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server version 20H2","Windows 10 Version 1507","Windows 10 Version 20H2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22017","summary":"Remote Desktop Client Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":8.8,"cvss_v4":null,"epss":0.14642,"ranking_epss":0.94632,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22017","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-22017"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:09","euvd":{"id":"EUVD-2022-27171","description":"Remote Desktop Client Remote Code Execution Vulnerability","published_time":"2022-05-10T20:33:28","cvss":8.8,"cvss_version":"3.1","epss":0.1464,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22017"],"products":["Windows 11 version 21H2","Windows Server 2022","Remote Desktop client for Windows Desktop"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22019","summary":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":8.8,"cvss_v4":null,"epss":0.10507,"ranking_epss":0.93425,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22019","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-22019"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:09","euvd":{"id":"EUVD-2022-27173","description":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","published_time":"2022-05-10T20:33:29","cvss":8.8,"cvss_version":"3.1","epss":0.1051,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22019"],"products":["Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows 10 Version 20H2","Windows 10 Version 1909","Windows Server 2012","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows 7","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows Server 2008 Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows 10 Version 1809","Windows Server version 20H2","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23270","summary":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":8.1,"cvss_v4":null,"epss":0.48395,"ranking_epss":0.9781,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23270","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-23270"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:09","euvd":{"id":"EUVD-2022-28356","description":"Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability","published_time":"2022-05-10T20:33:33","cvss":8.1,"cvss_version":"3.1","epss":0.484,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23270"],"products":["Windows 10 Version 1909","Windows Server 2008  Service Pack 2","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2012","Windows 7 Service Pack 1","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows 7","Windows 10 Version 21H1","Windows Server 2022","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23279","summary":"Windows ALPC Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.01386,"ranking_epss":0.80743,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23279","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-23279"],"vendor":null,"product":null,"version":null,"published_time":"2022-05-10T21:15:09","euvd":{"id":"EUVD-2022-28365","description":"Windows ALPC Elevation of Privilege Vulnerability","published_time":"2022-05-10T20:33:35","cvss":7,"cvss_version":"3.1","epss":0.0139,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23279"],"products":["Windows 11 version 21H2","Windows 10 Version 1909","Windows Server version 20H2","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26914","summary":"Win32k Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00373,"ranking_epss":0.59443,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26914","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26914"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:15","euvd":{"id":"EUVD-2022-31460","description":"Win32k Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:05:50","cvss":7.8,"cvss_version":"3.1","epss":0.0037,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26914"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server version 20H2","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 21H1","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26915","summary":"Windows Secure Channel Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.17608,"ranking_epss":0.95244,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26915","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26915"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:15","euvd":{"id":"EUVD-2022-31461","description":"Windows Secure Channel Denial of Service Vulnerability","published_time":"2022-04-15T19:05:52","cvss":7.5,"cvss_version":"3.1","epss":0.1761,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26915"],"products":["Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2008 R2 Service Pack 1","Windows Server 2012","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2016","Windows 7","Windows 10 Version 1909","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2008 Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server 2008  Service Pack 2","Windows 8.1","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26916","summary":"Windows Fax Compose Form Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0124,"ranking_epss":0.79661,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26916","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26916"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:15","euvd":{"id":"EUVD-2022-31462","description":"Windows Fax Compose Form Remote Code Execution Vulnerability","published_time":"2022-04-15T19:05:53","cvss":7.8,"cvss_version":"3.1","epss":0.0124,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26916"],"products":["Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows 7","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2012","Windows 8.1","Windows 10 Version 1809","Windows Server 2016","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1909","Windows Server 2019","Windows 10 Version 21H2","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26917","summary":"Windows Fax Compose Form Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0124,"ranking_epss":0.79661,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26917","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26917"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:15","euvd":{"id":"EUVD-2022-31463","description":"Windows Fax Compose Form Remote Code Execution Vulnerability","published_time":"2022-04-15T19:05:55","cvss":7.8,"cvss_version":"3.1","epss":0.0124,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26917"],"products":["Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 1507","Windows 10 Version 1909","Windows Server 2012","Windows 7","Windows Server version 20H2","Windows Server 2012 R2","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2016","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 20H2","Windows 10 Version 1607","Windows 8.1","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2022","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26918","summary":"Windows Fax Compose Form Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0124,"ranking_epss":0.79661,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26918","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26918"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:15","euvd":{"id":"EUVD-2022-31464","description":"Windows Fax Compose Form Remote Code Execution Vulnerability","published_time":"2022-04-15T19:05:56","cvss":7.8,"cvss_version":"3.1","epss":0.0124,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26918"],"products":["Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 10 Version 1909","Windows Server version 20H2","Windows Server 2008  Service Pack 2","Windows Server 2012 R2","Windows 10 Version 1507","Windows Server 2019","Windows 10 Version 1607","Windows 11 version 21H2","Windows 7","Windows Server 2008 Service Pack 2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26919","summary":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":8.1,"cvss_v4":null,"epss":0.04808,"ranking_epss":0.89734,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26919","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26919"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:15","euvd":{"id":"EUVD-2022-31465","description":"Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability","published_time":"2022-04-15T19:05:58","cvss":8.1,"cvss_version":"3.1","epss":0.0481,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26919"],"products":["Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows Server 2019","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 21H1","Windows 10 Version 1909","Windows 11 version 21H2","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26920","summary":"Windows Graphics Component Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00504,"ranking_epss":0.66587,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26920","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26920"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:15","euvd":{"id":"EUVD-2022-31466","description":"Windows Graphics Component Information Disclosure Vulnerability","published_time":"2022-04-15T19:05:59","cvss":5.5,"cvss_version":"3.1","epss":0.005,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26920"],"products":["Windows 11 version 21H2","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26826","summary":"Windows DNS Server Remote Code Execution Vulnerability","cvss":7.2,"cvss_version":3,"cvss_v2":9,"cvss_v3":7.2,"cvss_v4":null,"epss":0.00966,"ranking_epss":0.76992,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26826","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26826"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:14","euvd":{"id":"EUVD-2022-31376","description":"Windows DNS Server Remote Code Execution Vulnerability","published_time":"2022-04-15T19:05:17","cvss":7.2,"cvss_version":"3.1","epss":0.0097,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26826"],"products":["Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 1909","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1607","Windows Server 2019","Windows 10 Version 21H2","Windows Server version 20H2","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26827","summary":"Windows File Server Resource Management Service Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7,"cvss_v4":null,"epss":0.00151,"ranking_epss":0.3548,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26827","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26827"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:14","euvd":{"id":"EUVD-2022-31377","description":"Windows File Server Resource Management Service Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:05:20","cvss":7,"cvss_version":"3.1","epss":0.0015,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26827"],"products":["Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2012","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1607","Windows 7","Windows Server 2022","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26830","summary":"DiskUsage.exe Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.05155,"ranking_epss":0.90099,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:14","euvd":{"id":"EUVD-2022-31380","description":"DiskUsage.exe Remote Code Execution Vulnerability","published_time":"2022-04-15T19:05:24","cvss":7.5,"cvss_version":"3.1","epss":0.0516,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"],"products":["Windows 11 version 21H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26831","summary":"Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.21804,"ranking_epss":0.95877,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26831","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26831"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:14","euvd":{"id":"EUVD-2022-31381","description":"Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability","published_time":"2022-04-15T19:05:26","cvss":7.5,"cvss_version":"3.1","epss":0.218,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26831"],"products":["Windows 10 Version 1607","Windows 10 Version 21H1","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7","Windows 10 Version 21H2","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2019","Windows 7 Service Pack 1","Windows Server version 20H2","Windows Server 2022","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 20H2","Windows 10 Version 1909","Windows Server 2012","Windows Server 2016","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26832","summary":".NET Framework Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.22432,"ranking_epss":0.9596,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26832","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26832"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:14","euvd":{"id":"EUVD-2022-31382","description":".NET Framework Denial of Service Vulnerability","published_time":"2022-04-15T19:05:27","cvss":7.5,"cvss_version":"3.1","epss":0.2243,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26832"],"products":["Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2","Microsoft .NET Framework 4.8","Microsoft .NET Framework 3.5 AND 4.7.2","Microsoft .NET Framework 3.5","Microsoft .NET Framework 2.0 Service Pack 2","Microsoft .NET Framework 3.5 AND 4.8","Microsoft .NET Framework 3.0 Service Pack 2","Microsoft .NET Framework 3.5.1","Microsoft .NET Framework 4.6","Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2","Microsoft .NET Framework 4.5.2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26903","summary":"Windows Graphics Component Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02019,"ranking_epss":0.84128,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26903","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26903"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:14","euvd":{"id":"EUVD-2022-31450","description":"Windows Graphics Component Remote Code Execution Vulnerability","published_time":"2022-04-15T19:05:40","cvss":7.8,"cvss_version":"3.1","epss":0.0202,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26903"],"products":["Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows 10 Version 1607","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server 2012","Windows Server version 20H2","Windows Server 2012 R2","Microsoft Excel Mobile","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows Server 2022","Windows 10 Version 1507","Microsoft Word for Android","Windows 7 Service Pack 1","Microsoft PowerPoint Mobile","Windows 10 Version 1909","Microsoft Excel for Android","Windows 7","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Microsoft PowerPoint for Android","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019","Microsoft Word Mobile"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26794","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00488,"ranking_epss":0.65935,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26794","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26794"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31344","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:35","cvss":7.8,"cvss_version":"3.1","epss":0.0049,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26794"],"products":["Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows Server 2012 R2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows 11 version 21H2","Windows 10 Version 1507","Windows 7","Windows Server version 20H2","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26795","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00948,"ranking_epss":0.76772,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26795","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26795"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31345","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:36","cvss":7.8,"cvss_version":"3.1","epss":0.0095,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26795"],"products":["Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2022","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26796","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00382,"ranking_epss":0.59973,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26796","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26796"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31346","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:38","cvss":7.8,"cvss_version":"3.1","epss":0.0038,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26796"],"products":["Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1607","Windows 7","Windows 10 Version 1507","Windows Server 2012","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26797","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00488,"ranking_epss":0.65935,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26797","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26797"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31347","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:39","cvss":7.8,"cvss_version":"3.1","epss":0.0049,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26797"],"products":["Windows Server 2016","Windows 7 Service Pack 1","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 20H2","Windows Server 2012","Windows Server 2019","Windows 8.1","Windows Server 2012 R2","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1507","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26798","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0059,"ranking_epss":0.69654,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26798","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26798"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31348","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:40","cvss":7.8,"cvss_version":"3.1","epss":0.0059,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26798"],"products":["Windows 10 Version 21H1","Windows 7","Windows Server 2019","Windows Server version 20H2","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012","Windows 10 Version 21H2","Windows 8.1","Windows 10 Version 1607","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1909","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26801","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00382,"ranking_epss":0.59973,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26801","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26801"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31351","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:42","cvss":7.8,"cvss_version":"3.1","epss":0.0038,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26801"],"products":["Windows 10 Version 1809","Windows Server 2012","Windows 8.1","Windows 10 Version 21H1","Windows Server 2016","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2008 Service Pack 2","Windows 10 Version 1909","Windows 7 Service Pack 1","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows Server version 20H2","Windows Server 2012 (Server Core installation)","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26802","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00382,"ranking_epss":0.59973,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26802","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26802"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31352","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:44","cvss":7.8,"cvss_version":"3.1","epss":0.0038,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26802"],"products":["Windows Server 2022","Windows Server 2008 Service Pack 2","Windows 8.1","Windows Server 2019","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016","Windows Server 2012","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows 7","Windows 10 Version 1909","Windows 10 Version 21H1","Windows 7 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26803","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00583,"ranking_epss":0.69482,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26803","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26803"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31353","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:45","cvss":7.8,"cvss_version":"3.1","epss":0.0058,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26803"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows 8.1","Windows 10 Version 1809","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2022","Windows 10 Version 1809","Windows Server 2019","Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server version 20H2","Windows 10 Version 1909","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26807","summary":"Windows Work Folder Service Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00153,"ranking_epss":0.35779,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26807","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26807"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31357","description":"Windows Work Folder Service Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:47","cvss":7,"cvss_version":"3.1","epss":0.0015,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26807"],"products":["Windows 8.1","Windows Server 2019","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 10 Version 21H1","Windows 7","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 1607","Windows 10 Version 1909","Windows Server 2016","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26808","summary":"Windows File Explorer Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00112,"ranking_epss":0.29328,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26808","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26808"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31358","description":"Windows File Explorer Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:48","cvss":7,"cvss_version":"3.1","epss":0.0011,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26808"],"products":["Windows Server 2019","Windows 10 Version 1909","Windows Server version 20H2","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1809","Windows 8.1","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26809","summary":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":10,"cvss_v3":9.8,"cvss_v4":null,"epss":0.92562,"ranking_epss":0.99754,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26809","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26809"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:13","euvd":{"id":"EUVD-2022-31359","description":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","published_time":"2022-04-15T19:04:49","cvss":9.8,"cvss_version":"3.1","epss":0.9256,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26809"],"products":["Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows 10 Version 1909","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012 R2","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012","Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server version 20H2","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7","Windows 7 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24547","summary":"Windows Digital Media Receiver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01871,"ranking_epss":0.83516,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24547","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24547"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:12","euvd":{"id":"EUVD-2022-29427","description":"Windows Digital Media Receiver Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:10","cvss":7.8,"cvss_version":"3.1","epss":0.0187,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24547"],"products":["Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows 8.1","Windows Server version 20H2","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2016","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 1507","Windows 10 Version 1607","Windows Server 2012","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24549","summary":"Windows AppX Package Manager Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00219,"ranking_epss":0.44581,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24549","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24549"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:12","euvd":{"id":"EUVD-2022-29429","description":"Windows AppX Package Manager Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:13","cvss":7.8,"cvss_version":"3.1","epss":0.0022,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24549"],"products":["Windows 10 Version 1909","Windows 10 Version 1607","Windows Server version 20H2","Windows 10 Version 21H1","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 20H2","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 1507","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24550","summary":"Windows Telephony Server Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00432,"ranking_epss":0.63067,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24550","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24550"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:12","euvd":{"id":"EUVD-2022-29430","description":"Windows Telephony Server Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:15","cvss":7.8,"cvss_version":"3.1","epss":0.0043,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24550"],"products":["Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows Server 2022","Windows 8.1","Windows 10 Version 1607","Windows 10 Version 1909","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows Server 2016","Windows Server version 20H2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 1507","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26786","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00417,"ranking_epss":0.62203,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26786","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26786"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:12","euvd":{"id":"EUVD-2022-31336","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:22","cvss":7.8,"cvss_version":"3.1","epss":0.0042,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26786"],"products":["Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows Server 2012","Windows 10 Version 1507","Windows 10 Version 1909","Windows Server 2022","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1607","Windows Server version 20H2","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26787","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00382,"ranking_epss":0.59973,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26787","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26787"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:12","euvd":{"id":"EUVD-2022-31337","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:23","cvss":7.8,"cvss_version":"3.1","epss":0.0038,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26787"],"products":["Windows 7 Service Pack 1","Windows 10 Version 21H2","Windows Server 2012","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows Server 2016","Windows Server 2019","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1909","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2","Windows 10 Version 1809","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26788","summary":"PowerShell Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00378,"ranking_epss":0.59737,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26788","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26788"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:12","euvd":{"id":"EUVD-2022-31338","description":"PowerShell Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:25","cvss":7.8,"cvss_version":"3.1","epss":0.0038,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26788"],"products":["Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows 8.1","Windows Server 2012 R2","Windows 10 Version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","PowerShell 7.0","PowerShell 7.1","Windows 10 Version 1507","PowerShell 7.2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26789","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00387,"ranking_epss":0.60254,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26789","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26789"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:12","euvd":{"id":"EUVD-2022-31339","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:26","cvss":7.8,"cvss_version":"3.1","epss":0.0039,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26789"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server version 20H2","Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 1909","Windows Server 2019","Windows 10 Version 20H2","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26790","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00488,"ranking_epss":0.65935,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26790","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26790"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:12","euvd":{"id":"EUVD-2022-31340","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:28","cvss":7.8,"cvss_version":"3.1","epss":0.0049,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26790"],"products":["Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2016","Windows 10 Version 21H1","Windows 10 Version 1507","Windows Server 2012","Windows 11 version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019","Windows 7 Service Pack 1","Windows 10 Version 1909","Windows 10 Version 21H2","Windows 7","Windows Server version 20H2","Windows 10 Version 1809","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26792","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00382,"ranking_epss":0.59973,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26792","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26792"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:12","euvd":{"id":"EUVD-2022-31342","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:32","cvss":7.8,"cvss_version":"3.1","epss":0.0038,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26792"],"products":["Windows Server 2008 Service Pack 2","Windows 7","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2012","Windows Server 2019","Windows 11 version 21H2","Windows Server 2016","Windows 10 Version 1507","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-26793","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00495,"ranking_epss":0.66218,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26793","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26793"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:12","euvd":{"id":"EUVD-2022-31343","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:33","cvss":7.8,"cvss_version":"3.1","epss":0.005,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26793"],"products":["Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2022","Windows 10 Version 1909","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24500","summary":"Windows SMB Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":8.8,"cvss_v4":null,"epss":0.44661,"ranking_epss":0.97656,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24500","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24500"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29381","description":"Windows SMB Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:39","cvss":8.8,"cvss_version":"3.1","epss":0.4466,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24500"],"products":["Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows 10 Version 1607","Windows 8.1","Windows 7","Windows Server 2008 Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2012 R2","Windows Server 2019","Windows 10 Version 21H2","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24528","summary":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":8.8,"cvss_v4":null,"epss":0.04978,"ranking_epss":0.89914,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24528","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24528"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29408","description":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:46","cvss":8.8,"cvss_version":"3.1","epss":0.0498,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24528"],"products":["Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows Server 2019","Windows 10 Version 1909","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 7","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24530","summary":"Windows Installer Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00321,"ranking_epss":0.55496,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24530","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24530"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29410","description":"Windows Installer Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:47","cvss":7.8,"cvss_version":"3.1","epss":0.0032,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24530"],"products":["Windows 10 Version 1607","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2012","Windows 7 Service Pack 1","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 7"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24533","summary":"Remote Desktop Protocol Remote Code Execution Vulnerability","cvss":8,"cvss_version":3,"cvss_v2":8.5,"cvss_v3":8,"cvss_v4":null,"epss":0.08857,"ranking_epss":0.92732,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24533","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24533"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29413","description":"Remote Desktop Protocol Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:50","cvss":8,"cvss_version":"3.1","epss":0.0886,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24533"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2016","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2019","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24534","summary":"Win32 Stream Enumeration Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.04733,"ranking_epss":0.89643,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24534","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24534"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29414","description":"Win32 Stream Enumeration Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:52","cvss":7.5,"cvss_version":"3.1","epss":0.0473,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24534"],"products":["Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2008 Service Pack 2","Windows Server 2016","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows 7","Windows Server 2012 R2","Windows 10 Version 1909","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24537","summary":"Windows Hyper-V Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00156,"ranking_epss":0.36181,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29417","description":"Windows Hyper-V Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:55","cvss":7.8,"cvss_version":"3.1","epss":0.0016,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537"],"products":["Windows Server 2019","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 21H2","Windows Server 2016","Windows 10 Version 1607","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24540","summary":"Windows ALPC Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.0011,"ranking_epss":0.29029,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24540","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24540"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29420","description":"Windows ALPC Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:59","cvss":7,"cvss_version":"3.1","epss":0.0011,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24540"],"products":["Windows 7 Service Pack 1","Windows 8.1","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 1507","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 R2","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 7","Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24541","summary":"Windows Server Service Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":8.8,"cvss_v4":null,"epss":0.08721,"ranking_epss":0.92678,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24541","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24541"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29421","description":"Windows Server Service Remote Code Execution Vulnerability","published_time":"2022-04-15T19:04:00","cvss":8.8,"cvss_version":"3.1","epss":0.0872,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24541"],"products":["Windows 8.1","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows 10 Version 1809","Windows 7","Windows Server version 20H2","Windows 10 Version 1607","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2016","Windows Server 2012 R2","Windows 10 Version 1909","Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24542","summary":"Windows Win32k Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00342,"ranking_epss":0.5722,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24542","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24542"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29422","description":"Windows Win32k Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:03","cvss":7.8,"cvss_version":"3.1","epss":0.0034,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24542"],"products":["Windows Server 2016 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 7","Windows 10 Version 21H2","Windows Server version 20H2","Windows 11 version 21H2","Windows Server 2012","Windows Server 2019","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 8.1","Windows 10 Version 1507","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2022","Windows 7 Service Pack 1","Windows 10 Version 1909","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24544","summary":"Windows Kerberos Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0025,"ranking_epss":0.48676,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24544","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24544"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29424","description":"Windows Kerberos Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:06","cvss":7.8,"cvss_version":"3.1","epss":0.0025,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24544"],"products":["Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows 10 Version 1909","Windows Server 2008 R2 Service Pack 1","Windows Server version 20H2","Windows 7 Service Pack 1","Windows 7","Windows 10 Version 1507","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24545","summary":"Windows Kerberos Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":8.1,"cvss_v4":null,"epss":0.04076,"ranking_epss":0.88807,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24545","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24545"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29425","description":"Windows Kerberos Remote Code Execution Vulnerability","published_time":"2022-04-15T19:04:07","cvss":8.1,"cvss_version":"3.1","epss":0.0408,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24545"],"products":["Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2019","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1607","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24546","summary":"Windows DWM Core Library Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00373,"ranking_epss":0.59443,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24546","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24546"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:11","euvd":{"id":"EUVD-2022-29426","description":"Windows DWM Core Library Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:04:09","cvss":7.8,"cvss_version":"3.1","epss":0.0037,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24546"],"products":["Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 1909","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24479","summary":"Connected User Experiences and Telemetry Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00296,"ranking_epss":0.53274,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24479","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24479"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29360","description":"Connected User Experiences and Telemetry Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:04","cvss":7.8,"cvss_version":"3.1","epss":0.003,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24479"],"products":["Windows Server version 20H2","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 10 Version 1909","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24481","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.24904,"ranking_epss":0.96283,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24481","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24481"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29362","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:06","cvss":7.8,"cvss_version":"3.1","epss":0.249,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24481"],"products":["Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows 7","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2016","Windows 10 Version 1607","Windows Server 2012 R2","Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 8.1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24482","summary":"Windows ALPC Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00162,"ranking_epss":0.36891,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24482","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24482"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29363","description":"Windows ALPC Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:08","cvss":7,"cvss_version":"3.1","epss":0.0016,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24482"],"products":["Windows 10 Version 1507","Windows Server 2022","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 1607","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1909","Windows 10 Version 21H2","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24483","summary":"Windows Kernel Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":5.5,"cvss_v4":null,"epss":0.05889,"ranking_epss":0.90792,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24483","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24483"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29364","description":"Windows Kernel Information Disclosure Vulnerability","published_time":"2022-04-15T19:03:10","cvss":5.5,"cvss_version":"3.1","epss":0.0589,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24483"],"products":["Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows Server version 20H2","Windows 10 Version 1909","Windows 10 Version 21H2","Windows Server 2012","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows Server 2019","Windows 8.1","Windows Server 2022","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24485","summary":"Win32 File Enumeration Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.06152,"ranking_epss":0.91018,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24485","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24485"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29366","description":"Win32 File Enumeration Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:14","cvss":7.5,"cvss_version":"3.1","epss":0.0615,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24485"],"products":["Windows 10 Version 21H1","Windows 8.1","Windows 10 Version 21H2","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows 7","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1507","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1909","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2016","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24486","summary":"Windows Kerberos Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00373,"ranking_epss":0.59443,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24486","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24486"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29367","description":"Windows Kerberos Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:15","cvss":7.8,"cvss_version":"3.1","epss":0.0037,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24486"],"products":["Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server version 20H2","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 10 Version 1507","Windows 10 Version 1909","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24487","summary":"Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":7.5,"cvss_v3":8.8,"cvss_v4":null,"epss":0.07204,"ranking_epss":0.91789,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24487","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24487"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29368","description":"Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:17","cvss":8.8,"cvss_version":"3.1","epss":0.072,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24487"],"products":["Windows Server 2019","Windows Server 2016","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 1909","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server version 20H2","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24488","summary":"Windows Desktop Bridge Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00291,"ranking_epss":0.52917,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24488","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24488"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29369","description":"Windows Desktop Bridge Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:19","cvss":7.8,"cvss_version":"3.1","epss":0.0029,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24488"],"products":["Windows Server 2022","Windows Server version 20H2","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24491","summary":"Windows Network File System Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":7.5,"cvss_v3":9.8,"cvss_v4":null,"epss":0.37582,"ranking_epss":0.97296,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24491","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24491"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29372","description":"Windows Network File System Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:24","cvss":9.8,"cvss_version":"3.1","epss":0.3758,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24491"],"products":["Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows Server 2022","Windows Server 2012 R2","Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows 10 Version 1809","Windows Server 2016","Windows 8.1","Windows Server version 20H2","Windows 10 Version 1909","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24492","summary":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":8.8,"cvss_v4":null,"epss":0.07351,"ranking_epss":0.91891,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24492","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24492"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29373","description":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:26","cvss":8.8,"cvss_version":"3.1","epss":0.0735,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24492"],"products":["Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2012 R2","Windows 7","Windows 10 Version 1909","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016","Windows 10 Version 21H2","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2012","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24493","summary":"Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00662,"ranking_epss":0.71633,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24493","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24493"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29374","description":"Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability","published_time":"2022-04-15T19:03:28","cvss":5.5,"cvss_version":"3.1","epss":0.0066,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24493"],"products":["Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019","Windows Server version 20H2","Windows 10 Version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 8.1","Windows 7","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows Server 2012","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24494","summary":"Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.16754,"ranking_epss":0.95094,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24494","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24494"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29375","description":"Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:30","cvss":7.8,"cvss_version":"3.1","epss":0.1675,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24494"],"products":["Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2022","Windows 8.1","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 11 version 21H2","Windows 7","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2016","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24495","summary":"Windows Direct Show Remote Code Execution Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6,"cvss_v3":7,"cvss_v4":null,"epss":0.00751,"ranking_epss":0.73613,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24495","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24495"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29376","description":"Windows Direct Show Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:31","cvss":7,"cvss_version":"3.1","epss":0.0075,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24495"],"products":["Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2022","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 1909","Windows 10 Version 1809","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24496","summary":"Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00291,"ranking_epss":0.52917,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24496","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24496"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29377","description":"Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:33","cvss":7.8,"cvss_version":"3.1","epss":0.0029,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24496"],"products":["Windows 10 Version 1607","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1909","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24497","summary":"Windows Network File System Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":7.5,"cvss_v3":9.8,"cvss_v4":null,"epss":0.37582,"ranking_epss":0.97296,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24497","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24497"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29378","description":"Windows Network File System Remote Code Execution Vulnerability","published_time":"2022-04-15T19:03:34","cvss":9.8,"cvss_version":"3.1","epss":0.3758,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24497"],"products":["Windows 10 Version 1909","Windows 10 Version 1809","Windows 8.1","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2016","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24498","summary":"Windows iSCSI Target Service Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4,"cvss_v3":6.5,"cvss_v4":null,"epss":0.15947,"ranking_epss":0.94915,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24498","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24498"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29379","description":"Windows iSCSI Target Service Information Disclosure Vulnerability","published_time":"2022-04-15T19:03:36","cvss":6.5,"cvss_version":"3.1","epss":0.1595,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24498"],"products":["Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows 10 Version 1909","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1607","Windows 7","Windows 8.1","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24499","summary":"Windows Installer Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00254,"ranking_epss":0.49018,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24499","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24499"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:10","euvd":{"id":"EUVD-2022-29380","description":"Windows Installer Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:37","cvss":7.8,"cvss_version":"3.1","epss":0.0025,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24499"],"products":["Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 7 Service Pack 1","Windows 11 version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019","Windows Server 2008  Service Pack 2","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2012 R2","Windows 10 Version 21H2","Windows 10 Version 1507","Windows 10 Version 1909","Windows Server 2022","Windows 7","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows 8.1","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21983","summary":"Win32 Stream Enumeration Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.04733,"ranking_epss":0.89643,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21983","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21983"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:09","euvd":{"id":"EUVD-2022-27138","description":"Win32 Stream Enumeration Remote Code Execution Vulnerability","published_time":"2022-04-15T19:02:45","cvss":7.5,"cvss_version":"3.1","epss":0.0473,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21983"],"products":["Windows Server 2019","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows 8.1","Windows 10 Version 1909","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server 2012","Windows 7"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22008","summary":"Windows Hyper-V Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00156,"ranking_epss":0.36181,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22008","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22008"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:09","euvd":{"id":"EUVD-2022-27162","description":"Windows Hyper-V Remote Code Execution Vulnerability","published_time":"2022-04-15T19:02:47","cvss":7.8,"cvss_version":"3.1","epss":0.0016,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22008"],"products":["Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 1507","Windows 10 Version 1909","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows 10 Version 1607","Windows 11 version 21H2","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22009","summary":"Windows Hyper-V Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00339,"ranking_epss":0.57043,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22009","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22009"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:09","euvd":{"id":"EUVD-2022-27163","description":"Windows Hyper-V Remote Code Execution Vulnerability","published_time":"2022-04-15T19:02:48","cvss":7.8,"cvss_version":"3.1","epss":0.0034,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22009"],"products":["Windows Server 2022","Windows Server version 20H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23257","summary":"Windows Hyper-V Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":8.8,"cvss_v4":null,"epss":0.00328,"ranking_epss":0.56177,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23257","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23257"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:09","euvd":{"id":"EUVD-2022-28344","description":"Windows Hyper-V Remote Code Execution Vulnerability","published_time":"2022-04-15T19:02:50","cvss":8.8,"cvss_version":"3.1","epss":0.0033,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23257"],"products":["Windows 11 version 22H2","Windows Server version 20H2","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23268","summary":"Windows Hyper-V Denial of Service Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":6.5,"cvss_v4":null,"epss":0.00293,"ranking_epss":0.52998,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23268","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23268"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:09","euvd":{"id":"EUVD-2022-28354","description":"Windows Hyper-V Denial of Service Vulnerability","published_time":"2022-04-15T19:02:54","cvss":6.5,"cvss_version":"3.1","epss":0.0029,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23268"],"products":["Windows 11 version 21H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24474","summary":"Windows Win32k Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00337,"ranking_epss":0.569,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24474","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24474"],"vendor":null,"product":null,"version":null,"published_time":"2022-04-15T19:15:09","euvd":{"id":"EUVD-2022-29355","description":"Windows Win32k Elevation of Privilege Vulnerability","published_time":"2022-04-15T19:03:01","cvss":7.8,"cvss_version":"3.1","epss":0.0034,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24474"],"products":["Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows 8.1","Windows Server 2019","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022","Windows Server version 20H2","Windows Server 2012","Windows 7","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 7 Service Pack 1","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24525","summary":"Windows Update Stack Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00157,"ranking_epss":0.36282,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24525","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24525"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:16","euvd":{"id":"EUVD-2022-29405","description":"Windows Update Stack Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:08:30","cvss":7,"cvss_version":"3.1","epss":0.0016,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24525"],"products":["Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server version 20H2","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24503","summary":"Remote Desktop Protocol Client Information Disclosure Vulnerability","cvss":5.4,"cvss_version":3,"cvss_v2":5,"cvss_v3":5.4,"cvss_v4":null,"epss":0.01976,"ranking_epss":0.83937,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24503","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24503"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:15","euvd":{"id":"EUVD-2022-29384","description":"Remote Desktop Protocol Client Information Disclosure Vulnerability","published_time":"2022-03-09T17:07:59","cvss":5.4,"cvss_version":"3.1","epss":0.0198,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24503"],"products":["Windows 7 Service Pack 1","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Remote Desktop client for Windows Desktop","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows Server 2016","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows 7","Windows 10 Version 20H2","Windows 8.1","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server version 20H2","Windows Server 2019","Windows Server 2012","Windows 10 Version 1909","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24505","summary":"Windows ALPC Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00201,"ranking_epss":0.42159,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24505","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24505"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:15","euvd":{"id":"EUVD-2022-29386","description":"Windows ALPC Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:08:01","cvss":7,"cvss_version":"3.1","epss":0.002,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24505"],"products":["Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows Server 2022","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24507","summary":"Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00459,"ranking_epss":0.64451,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24507","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24507"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:15","euvd":{"id":"EUVD-2022-29388","description":"Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:08:05","cvss":7.8,"cvss_version":"3.1","epss":0.0046,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24507"],"products":["Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2016","Windows 10 Version 1909","Windows Server version 20H2","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24508","summary":"Win32 File Enumeration Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.5,"cvss_v3":8.8,"cvss_v4":null,"epss":0.05086,"ranking_epss":0.9002,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24508","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24508"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:15","euvd":{"id":"EUVD-2022-29389","description":"Win32 File Enumeration Remote Code Execution Vulnerability","published_time":"2022-03-09T17:08:06","cvss":8.8,"cvss_version":"3.1","epss":0.0509,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24508"],"products":["Windows 10 Version 21H2","Windows Server 2022","Windows 11 version 21H2","Windows Server version 20H2","Windows 10 Version 20H2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24502","summary":"Windows HTML Platforms Security Feature Bypass Vulnerability","cvss":4.3,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":4.3,"cvss_v4":null,"epss":0.02844,"ranking_epss":0.86531,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24502","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24502"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:14","euvd":{"id":"EUVD-2022-29383","description":"Windows HTML Platforms Security Feature Bypass Vulnerability","published_time":"2022-03-09T17:07:58","cvss":4.3,"cvss_version":"3.1","epss":0.0284,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24502"],"products":["Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows Server 2016","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1909","Windows Server version 20H2","Windows Server 2012 R2","Windows 10 Version 21H2","Windows Server 2022","Windows 8.1","Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 1809","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24454","summary":"Windows Security Support Provider Interface Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0023,"ranking_epss":0.45927,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24454","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24454"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:13","euvd":{"id":"EUVD-2022-29336","description":"Windows Security Support Provider Interface Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:32","cvss":7.8,"cvss_version":"3.1","epss":0.0023,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24454"],"products":["Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 1507","Windows 10 Version 21H2","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1607","Windows 7","Windows Server 2012 R2","Windows Server 2012","Windows Server version 20H2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24459","summary":"Windows Fax and Scan Service Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0023,"ranking_epss":0.45927,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24459","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24459"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:13","euvd":{"id":"EUVD-2022-29341","description":"Windows Fax and Scan Service Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:38","cvss":7.8,"cvss_version":"3.1","epss":0.0023,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24459"],"products":["Windows 7 Service Pack 1","Windows Server 2022","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2012","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 20H2","Windows 11 version 21H2","Windows Server 2016","Windows Server 2008 Service Pack 2","Windows 10 Version 1909","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 7","Windows 8.1","Windows Server version 20H2","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-24460","summary":"Tablet Windows User Interface Application Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":7.6,"cvss_v3":7,"cvss_v4":null,"epss":0.00888,"ranking_epss":0.75947,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24460","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24460"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:13","euvd":{"id":"EUVD-2022-29342","description":"Tablet Windows User Interface Application Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:39","cvss":7,"cvss_version":"3.1","epss":0.0089,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24460"],"products":["Windows 10 Version 1507","Windows 10 Version 1607","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2016","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23290","summary":"Windows Inking COM Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0023,"ranking_epss":0.45927,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23290","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23290"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:12","euvd":{"id":"EUVD-2022-28376","description":"Windows Inking COM Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:11","cvss":7.8,"cvss_version":"3.1","epss":0.0023,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23290"],"products":["Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022","Windows 11 version 21H2","Windows 8.1","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2012","Windows 7 Service Pack 1","Windows Server version 20H2","Windows 7","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2","Windows 10 Version 1507","Windows 10 Version 1607","Windows Server 2019","Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23291","summary":"Windows DWM Core Library Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00389,"ranking_epss":0.60414,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23291","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23291"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:12","euvd":{"id":"EUVD-2022-28377","description":"Windows DWM Core Library Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:13","cvss":7.8,"cvss_version":"3.1","epss":0.0039,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23291"],"products":["Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 1909","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23293","summary":"Windows Fast FAT File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00299,"ranking_epss":0.53664,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23293","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23293"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:12","euvd":{"id":"EUVD-2022-28379","description":"Windows Fast FAT File System Driver Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:14","cvss":7.8,"cvss_version":"3.1","epss":0.003,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23293"],"products":["Windows 10 Version 1607","Windows Server version 20H2","Windows 11 version 21H2","Windows 10 Version 1507","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows 8.1","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012","Windows 10 Version 1809","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23294","summary":"Windows Event Tracing Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.5,"cvss_v3":8.8,"cvss_v4":null,"epss":0.07756,"ranking_epss":0.92132,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23294","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23294"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:12","euvd":{"id":"EUVD-2022-28380","description":"Windows Event Tracing Remote Code Execution Vulnerability","published_time":"2022-03-09T17:07:16","cvss":8.8,"cvss_version":"3.1","epss":0.0776,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23294"],"products":["Windows 10 Version 21H2","Windows Server 2022","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows 10 Version 1607","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23296","summary":"Windows Installer Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00542,"ranking_epss":0.68154,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23296","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23296"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:12","euvd":{"id":"EUVD-2022-28382","description":"Windows Installer Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:19","cvss":7.8,"cvss_version":"3.1","epss":0.0054,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23296"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2016","Windows Server 2012 R2","Windows 7","Windows 8.1","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server version 20H2","Windows 7 Service Pack 1","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1909","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23297","summary":"Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00495,"ranking_epss":0.66205,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23297","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23297"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:12","euvd":{"id":"EUVD-2022-28383","description":"Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability","published_time":"2022-03-09T17:07:21","cvss":5.5,"cvss_version":"3.1","epss":0.005,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23297"],"products":["Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows 8.1","Windows 7 Service Pack 1","Windows Server 2022","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows Server version 20H2","Windows 7","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23298","summary":"Windows NT OS Kernel Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7,"cvss_v4":null,"epss":0.00489,"ranking_epss":0.65958,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23298","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23298"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:12","euvd":{"id":"EUVD-2022-28384","description":"Windows NT OS Kernel Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:22","cvss":7,"cvss_version":"3.1","epss":0.0049,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23298"],"products":["Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 21H2","Windows Server 2012","Windows Server 2016","Windows 7","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows 10 Version 20H2","Windows 10 Version 1507","Windows 10 Version 1607","Windows Server 2022","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23299","summary":"Windows PDEV Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00555,"ranking_epss":0.68581,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23299","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23299"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:12","euvd":{"id":"EUVD-2022-28385","description":"Windows PDEV Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:23","cvss":7.8,"cvss_version":"3.1","epss":0.0056,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23299"],"products":["Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2","Windows 10 Version 1909","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server 2019","Windows Server 2012 R2","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2016","Windows Server version 20H2","Windows Server 2012","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 7","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23278","summary":"Microsoft Defender for Endpoint Spoofing Vulnerability","cvss":5.9,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":5.9,"cvss_v4":null,"epss":0.03208,"ranking_epss":0.87304,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23278","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23278"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:11","euvd":{"id":"EUVD-2022-28364","description":"Microsoft Defender for Endpoint Spoofing Vulnerability","published_time":"2022-03-09T17:06:57","cvss":5.9,"cvss_version":"3.1","epss":0.0321,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23278"],"products":["Microsoft Defender for Endpoint EDR sensor","Microsoft Defender for Endpoint for Mac","Microsoft Defender for Endpoint for Windows","Microsoft Defender for Endpoint for iOS","Microsoft Defender for Endpoint for Linux","Microsoft Defender for Endpoint for Android"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23281","summary":"Windows Common Log File System Driver Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00533,"ranking_epss":0.67823,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23281","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23281"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:11","euvd":{"id":"EUVD-2022-28367","description":"Windows Common Log File System Driver Information Disclosure Vulnerability","published_time":"2022-03-09T17:06:58","cvss":5.5,"cvss_version":"3.1","epss":0.0053,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23281"],"products":["Windows 10 Version 1607","Windows Server 2012","Windows 7","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2019","Windows 10 Version 1909","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016","Windows Server version 20H2","Windows Server 2008  Service Pack 2","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23283","summary":"Windows ALPC Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00192,"ranking_epss":0.41032,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23283","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23283"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:11","euvd":{"id":"EUVD-2022-28369","description":"Windows ALPC Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:01","cvss":7,"cvss_version":"3.1","epss":0.0019,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23283"],"products":["Windows Server version 20H2","Windows 7","Windows 7 Service Pack 1","Windows 10 Version 1909","Windows 8.1","Windows 10 Version 21H1","Windows Server 2012","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2","Windows Server 2019","Windows 10 Version 1809","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23284","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.2,"cvss_version":3,"cvss_v2":9,"cvss_v3":7.2,"cvss_v4":null,"epss":0.09515,"ranking_epss":0.9302,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23284","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23284"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:11","euvd":{"id":"EUVD-2022-28370","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:03","cvss":7.2,"cvss_version":"3.1","epss":0.0952,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23284"],"products":["Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2016","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2012 R2","Windows 10 Version 1909","Windows 10 Version 20H2","Windows 8.1","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23286","summary":"Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7,"cvss_v4":null,"epss":0.0065,"ranking_epss":0.71311,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23286","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23286"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:11","euvd":{"id":"EUVD-2022-28372","description":"Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:07","cvss":7,"cvss_version":"3.1","epss":0.0065,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23286"],"products":["Windows Server version 20H2","Windows 10 Version 1909","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23287","summary":"Windows ALPC Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7,"cvss_v4":null,"epss":0.00484,"ranking_epss":0.65703,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23287","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23287"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:11","euvd":{"id":"EUVD-2022-28373","description":"Windows ALPC Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:07:08","cvss":7,"cvss_version":"3.1","epss":0.0048,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23287"],"products":["Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 1909","Windows Server 2022","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2016","Windows 10 Version 20H2","Windows 10 Version 1507","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21977","summary":"Media Foundation Information Disclosure Vulnerability","cvss":3.3,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":3.3,"cvss_v4":null,"epss":0.0138,"ranking_epss":0.80689,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21977","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21977"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:10","euvd":{"id":"EUVD-2022-27132","description":"Media Foundation Information Disclosure Vulnerability","published_time":"2022-03-09T17:06:42","cvss":3.3,"cvss_version":"3.1","epss":0.0138,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21977"],"products":["Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1909","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2016","Windows 10 Version 21H2","Windows 8.1","Windows 10 Version 1507","Windows Server 2012 R2","Windows 11 version 21H2","Windows Server 2019","Windows 10 Version 20H2","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21990","summary":"Remote Desktop Client Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":8.8,"cvss_v4":null,"epss":0.18265,"ranking_epss":0.95357,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21990","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21990"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:10","euvd":{"id":"EUVD-2022-27144","description":"Remote Desktop Client Remote Code Execution Vulnerability","published_time":"2022-03-09T17:06:44","cvss":8.8,"cvss_version":"3.1","epss":0.1827,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21990"],"products":["Windows 10 Version 1809","Windows 7","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008  Service Pack 2","Remote Desktop client for Windows Desktop","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 10 Version 1607","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows 7 Service Pack 1","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2012","Windows Server version 20H2","Windows 11 version 21H2","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22010","summary":"Media Foundation Information Disclosure Vulnerability","cvss":4.4,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":4.4,"cvss_v4":null,"epss":0.01314,"ranking_epss":0.80251,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22010","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22010"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:10","euvd":{"id":"EUVD-2022-27164","description":"Media Foundation Information Disclosure Vulnerability","published_time":"2022-03-09T17:06:49","cvss":4.4,"cvss_version":"3.1","epss":0.0131,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22010"],"products":["Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2019","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1607","Windows 10 Version 1909","Windows Server 2012","Windows Server version 20H2","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-23253","summary":"Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4,"cvss_v3":6.5,"cvss_v4":null,"epss":0.30215,"ranking_epss":0.96793,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23253","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23253"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:10","euvd":{"id":"EUVD-2022-28340","description":"Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability","published_time":"2022-03-09T17:06:51","cvss":6.5,"cvss_version":"3.1","epss":0.3022,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23253"],"products":["Windows Server 2012 R2","Windows Server version 20H2","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1507","Windows Server 2016","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 7","Windows Server 2022","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21967","summary":"Xbox Live Auth Manager for Windows Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00497,"ranking_epss":0.66274,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21967","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21967"],"vendor":null,"product":null,"version":null,"published_time":"2022-03-09T17:15:09","euvd":{"id":"EUVD-2022-27122","description":"Xbox Live Auth Manager for Windows Elevation of Privilege Vulnerability","published_time":"2022-03-09T17:06:38","cvss":7,"cvss_version":"3.1","epss":0.005,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21967"],"products":["Windows 10 Version 1809","Windows 10 Version 1909","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 1507","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows 10 Version 1607","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-33110","summary":"Improper input validation for some Intel(R) Wireless Bluetooth(R) products and Killer(TM) Bluetooth(R) products in Windows 10 and 11 before version 22.80 may allow an unauthenticated user to potentially enable denial of service via adjacent access.","cvss":6.5,"cvss_version":3,"cvss_v2":3.3,"cvss_v3":6.5,"cvss_v4":null,"epss":0.00304,"ranking_epss":0.54099,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00581.html","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00581.html"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T23:15:15","euvd":{"id":"EUVD-2021-19825","description":"Improper input validation for some Intel(R) Wireless Bluetooth(R) products and Killer(TM) Bluetooth(R) products in Windows 10 and 11 before version 22.80 may allow an unauthenticated user to potentially enable denial of service via adjacent access.","published_time":"2022-02-09T22:04:39","cvss":6.5,"cvss_version":"3.1","epss":0.003,"assigner":"intel","references":["https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00581.html"],"products":["Intel(R) Wireless Bluetooth(R) products and Killer(TM) Bluetooth(R) products in Windows 10 and 11"],"vendors":["n/a"]}},{"cve_id":"CVE-2021-33113","summary":"Improper input validation for some Intel(R) PROSet/Wireless WiFi in multiple operating systems and Killer(TM) WiFi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service or information disclosure via adjacent access.","cvss":8.1,"cvss_version":3,"cvss_v2":4.8,"cvss_v3":8.1,"cvss_v4":null,"epss":0.00309,"ranking_epss":0.54453,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00582.html","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00582.html"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T23:15:15","euvd":{"id":"EUVD-2021-19828","description":"Improper input validation for some Intel(R) PROSet/Wireless WiFi in multiple operating systems and Killer(TM) WiFi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service or information disclosure via adjacent access.","published_time":"2022-02-09T22:04:38","cvss":8.1,"cvss_version":"3.1","epss":0.0031,"assigner":"intel","references":["https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00582.html"],"products":["Intel(R) PROSet/Wireless WiFi in multiple operating systems and Killer(TM) WiFi in Windows 10 and 11"],"vendors":["n/a"]}},{"cve_id":"CVE-2021-33114","summary":"Improper input validation for some Intel(R) PROSet/Wireless WiFi in multiple operating systems and Killer(TM) WiFi in Windows 10 and 11 may allow an authenticated user to potentially enable denial of service via adjacent access.","cvss":5.7,"cvss_version":3,"cvss_v2":2.7,"cvss_v3":5.7,"cvss_v4":null,"epss":0.00174,"ranking_epss":0.38677,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00582.html","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00582.html"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T23:15:15","euvd":{"id":"EUVD-2021-19829","description":"Improper input validation for some Intel(R) PROSet/Wireless WiFi in multiple operating systems and Killer(TM) WiFi in Windows 10 and 11 may allow an authenticated user to potentially enable denial of service via adjacent access.","published_time":"2022-02-09T22:04:40","cvss":5.7,"cvss_version":"3.1","epss":0.0017,"assigner":"intel","references":["https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00582.html"],"products":["Intel(R) PROSet/Wireless WiFi in multiple operating systems and Killer(TM) WiFi in Windows 10 and 11"],"vendors":["n/a"]}},{"cve_id":"CVE-2022-22710","summary":"Windows Common Log File System Driver Denial of Service Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00274,"ranking_epss":0.51132,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22710","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22710"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:10","euvd":{"id":"EUVD-2022-27853","description":"Windows Common Log File System Driver Denial of Service Vulnerability","published_time":"2022-02-09T16:37:02","cvss":5.5,"cvss_version":"3.1","epss":0.0027,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22710"],"products":["Windows Server version 20H2","Windows 7","Windows Server 2016 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 1507","Windows Server 2016","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows 10 Version 1607","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows Server 2008 Service Pack 2","Windows 7 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22712","summary":"Windows Hyper-V Denial of Service Vulnerability","cvss":5.6,"cvss_version":3,"cvss_v2":4.7,"cvss_v3":5.6,"cvss_v4":null,"epss":0.00212,"ranking_epss":0.43758,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22712","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22712"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:10","euvd":{"id":"EUVD-2022-27855","description":"Windows Hyper-V Denial of Service Vulnerability","published_time":"2022-02-09T16:37:03","cvss":5.6,"cvss_version":"3.1","epss":0.0021,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22712"],"products":["Windows 11 version 21H2","Windows 10 Version 21H2","Windows 10 Version 1909","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2019","Windows Server version 20H2","Windows Server 2022","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22715","summary":"Named Pipe File System Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.09985,"ranking_epss":0.93213,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22715","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22715"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:10","euvd":{"id":"EUVD-2022-27858","description":"Named Pipe File System Elevation of Privilege Vulnerability","published_time":"2022-02-09T16:37:05","cvss":7.8,"cvss_version":"3.1","epss":0.0998,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22715"],"products":["Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 20H2","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019","Windows 10 Version 21H1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22717","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7,"cvss_v4":null,"epss":0.00579,"ranking_epss":0.69346,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22717","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22717"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:10","euvd":{"id":"EUVD-2022-27860","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-02-09T16:37:07","cvss":7,"cvss_version":"3.1","epss":0.0058,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22717"],"products":["Windows Server 2012","Windows Server 2012 R2","Windows 10 Version 1909","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows Server 2016","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H1","Windows 7 Service Pack 1","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21989","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7.8,"cvss_v4":null,"epss":0.02161,"ranking_epss":0.84655,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21989","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21989"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27143","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2022-02-09T16:36:36","cvss":7.8,"cvss_version":"3.1","epss":0.0216,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21989"],"products":["Windows Server 2008 R2 Service Pack 1","Windows Server 2019","Windows Server 2022","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2012 R2","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016","Windows 10 Version 1607","Windows 7 Service Pack 1","Windows Server 2012","Windows 7","Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows 8.1","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21992","summary":"Windows Mobile Device Management Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01497,"ranking_epss":0.81521,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21992","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21992"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27146","description":"Windows Mobile Device Management Remote Code Execution Vulnerability","published_time":"2022-02-09T16:36:40","cvss":7.8,"cvss_version":"3.1","epss":0.015,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21992"],"products":["Windows 10 Version 21H1","Windows Server 2022","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1909","Windows 10 Version 21H2","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21993","summary":"Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":7.8,"cvss_v3":7.5,"cvss_v4":null,"epss":0.23968,"ranking_epss":0.96154,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21993","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21993"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27147","description":"Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability","published_time":"2022-02-09T16:36:41","cvss":7.5,"cvss_version":"3.1","epss":0.2397,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21993"],"products":["Windows 10 Version 1909","Windows 10 Version 1507","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server version 20H2","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21994","summary":"Windows DWM Core Library Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00523,"ranking_epss":0.67351,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21994","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21994"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27148","description":"Windows DWM Core Library Elevation of Privilege Vulnerability","published_time":"2022-02-09T16:36:42","cvss":7.8,"cvss_version":"3.1","epss":0.0052,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21994"],"products":["Windows 10 Version 20H2","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server version 20H2","Windows 10 Version 1909","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21995","summary":"Windows Hyper-V Remote Code Execution Vulnerability","cvss":7.9,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.9,"cvss_v4":null,"epss":0.00841,"ranking_epss":0.75175,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21995","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21995"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27149","description":"Windows Hyper-V Remote Code Execution Vulnerability","published_time":"2022-02-09T16:36:44","cvss":7.9,"cvss_version":"3.1","epss":0.0084,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21995"],"products":["Windows 10 Version 1507","Windows Server 2019","Windows Server 2022","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 21H1","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21996","summary":"Win32k Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00385,"ranking_epss":0.60164,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21996","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21996"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27150","description":"Win32k Elevation of Privilege Vulnerability","published_time":"2022-02-09T16:36:45","cvss":7.8,"cvss_version":"3.1","epss":0.0039,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21996"],"products":["Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21997","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.1,"cvss_version":3,"cvss_v2":3.6,"cvss_v3":7.1,"cvss_v4":null,"epss":0.00295,"ranking_epss":0.53234,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21997","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21997"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27151","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2022-02-09T16:36:47","cvss":7.1,"cvss_version":"3.1","epss":0.003,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21997"],"products":["Windows Server 2019","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows 10 Version 1607","Windows 7","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2008  Service Pack 2","Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server version 20H2","Windows Server 2022","Windows 10 Version 1809","Windows 8.1","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21998","summary":"Windows Common Log File System Driver Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00406,"ranking_epss":0.61514,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21998","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21998"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27152","description":"Windows Common Log File System Driver Information Disclosure Vulnerability","published_time":"2022-02-09T16:36:48","cvss":5.5,"cvss_version":"3.1","epss":0.0041,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21998"],"products":["Windows Server 2008  Service Pack 2","Windows 10 Version 1909","Windows Server 2012 R2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 21H1","Windows Server version 20H2","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows 10 Version 1507","Windows Server 2019","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22000","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00523,"ranking_epss":0.67351,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22000","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22000"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27154","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2022-02-09T16:36:51","cvss":7.8,"cvss_version":"3.1","epss":0.0052,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22000"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 7 Service Pack 1","Windows 7","Windows Server 2016","Windows 8.1","Windows Server 2012","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1909","Windows Server 2022","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22001","summary":"Windows Remote Access Connection Manager Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00389,"ranking_epss":0.60414,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22001","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22001"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27155","description":"Windows Remote Access Connection Manager Elevation of Privilege Vulnerability","published_time":"2022-02-09T16:36:53","cvss":7.8,"cvss_version":"3.1","epss":0.0039,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22001"],"products":["Windows 10 Version 1909","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows 10 Version 20H2","Windows Server 2016","Windows Server 2022","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2012","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-22002","summary":"Windows User Account Profile Picture Denial of Service Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00273,"ranking_epss":0.50998,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22002","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22002"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:09","euvd":{"id":"EUVD-2022-27156","description":"Windows User Account Profile Picture Denial of Service Vulnerability","published_time":"2022-02-09T16:36:54","cvss":5.5,"cvss_version":"3.1","epss":0.0027,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22002"],"products":["Windows Server 2016","Windows Server version 20H2","Windows 8.1","Windows Server 2022","Windows Server 2012 R2","Windows 10 Version 1909","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1507","Windows 11 version 21H2","Windows 10 Version 21H1","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21974","summary":"Roaming Security Rights Management Services Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":7.8,"cvss_v4":null,"epss":0.08813,"ranking_epss":0.92715,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21974","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21974"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:08","euvd":{"id":"EUVD-2022-27129","description":"Roaming Security Rights Management Services Remote Code Execution Vulnerability","published_time":"2022-02-09T16:36:26","cvss":7.8,"cvss_version":"3.1","epss":0.0881,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21974"],"products":["Windows 10 Version 1607","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 21H2","Windows 10 Version 1909","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21981","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00297,"ranking_epss":0.53523,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21981","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21981"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:08","euvd":{"id":"EUVD-2022-27136","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2022-02-09T16:36:28","cvss":7.8,"cvss_version":"3.1","epss":0.003,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21981"],"products":["Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows 10 Version 1909","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows 7","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows 10 Version 21H1","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21984","summary":"Windows DNS Server Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6,"cvss_v3":8.8,"cvss_v4":null,"epss":0.07463,"ranking_epss":0.91952,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21984","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21984"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:08","euvd":{"id":"EUVD-2022-27139","description":"Windows DNS Server Remote Code Execution Vulnerability","published_time":"2022-02-09T16:36:29","cvss":8.8,"cvss_version":"3.1","epss":0.0746,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21984"],"products":["Windows Server 2022","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 1909","Windows Server version 20H2","Windows 10 Version 21H2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21985","summary":"Windows Remote Access Connection Manager Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00296,"ranking_epss":0.53355,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21985","https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21985"],"vendor":null,"product":null,"version":null,"published_time":"2022-02-09T17:15:08","euvd":{"id":"EUVD-2022-27140","description":"Windows Remote Access Connection Manager Information Disclosure Vulnerability","published_time":"2022-02-09T16:36:31","cvss":5.5,"cvss_version":"3.1","epss":0.003,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21985"],"products":["Windows 11 version 21H2","Windows Server 2016","Windows 7","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 1909","Windows 7 Service Pack 1","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows 8.1","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 1607","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21958","summary":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":6.8,"cvss_v4":null,"epss":0.01417,"ranking_epss":0.80993,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21958","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21958"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:14","euvd":{"id":"EUVD-2022-27113","description":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","published_time":"2022-01-11T20:23:28","cvss":6.8,"cvss_version":"3.1","epss":0.0142,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21958"],"products":["Windows Server 2019","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows 8.1","Windows 10 Version 1507","Windows Server 2012 R2","Windows Server 2016","Windows Server version 20H2","Windows 10 Version 21H1","Windows 10 Version 1909","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1607","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21959","summary":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":6.8,"cvss_v4":null,"epss":0.01417,"ranking_epss":0.80993,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21959","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21959"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:14","euvd":{"id":"EUVD-2022-27114","description":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","published_time":"2022-01-11T20:23:29","cvss":6.8,"cvss_version":"3.1","epss":0.0142,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21959"],"products":["Windows Server 2016","Windows Server 2019","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012 R2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 8.1","Windows Server 2012","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1909","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21960","summary":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":6.8,"cvss_v4":null,"epss":0.01417,"ranking_epss":0.80993,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21960","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21960"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:14","euvd":{"id":"EUVD-2022-27115","description":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","published_time":"2022-01-11T20:23:30","cvss":6.8,"cvss_version":"3.1","epss":0.0142,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21960"],"products":["Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1909","Windows Server 2019","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2012","Windows Server 2022","Windows 10 Version 1507","Windows Server version 20H2","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21961","summary":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":6.8,"cvss_v4":null,"epss":0.01417,"ranking_epss":0.80993,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21961","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21961"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:14","euvd":{"id":"EUVD-2022-27116","description":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","published_time":"2022-01-11T20:23:31","cvss":6.8,"cvss_version":"3.1","epss":0.0142,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21961"],"products":["Windows 10 Version 1607","Windows 10 Version 1809","Windows 8.1","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows 11 version 21H2","Windows 10 Version 1909","Windows 10 Version 1507","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21962","summary":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":6.8,"cvss_v4":null,"epss":0.01417,"ranking_epss":0.80993,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21962","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21962"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:14","euvd":{"id":"EUVD-2022-27117","description":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","published_time":"2022-01-11T20:23:31","cvss":6.8,"cvss_version":"3.1","epss":0.0142,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21962"],"products":["Windows Server 2016","Windows 10 Version 1909","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2012 R2","Windows Server 2012","Windows Server 2022","Windows 8.1","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21963","summary":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","cvss":6.4,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":6.4,"cvss_v4":null,"epss":0.0119,"ranking_epss":0.79236,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21963","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21963"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:14","euvd":{"id":"EUVD-2022-27118","description":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","published_time":"2022-01-11T20:23:32","cvss":6.4,"cvss_version":"3.1","epss":0.0119,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21963"],"products":["Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1909","Windows 10 Version 1809","Windows 10 Version 1809","Windows 8.1","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21911","summary":".NET Framework Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.20804,"ranking_epss":0.95739,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21911","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21911"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27067","description":".NET Framework Denial of Service Vulnerability","published_time":"2022-01-11T20:23:12","cvss":7.5,"cvss_version":"3.1","epss":0.208,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21911"],"products":["Microsoft .NET Framework 4.8","Microsoft .NET Framework 4.5.2","Microsoft .NET Framework 3.5 AND 4.8","Microsoft .NET Framework 4.6","Microsoft .NET Framework 3.5","Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2","Microsoft .NET Framework 3.5 AND 4.7.2","Microsoft .NET Framework 2.0 Service Pack 2","Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2","Microsoft .NET Framework 3.5.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21913","summary":"Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass","cvss":5.3,"cvss_version":3,"cvss_v2":5,"cvss_v3":5.3,"cvss_v4":null,"epss":0.02591,"ranking_epss":0.85919,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21913","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21913"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27069","description":"Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass","published_time":"2022-01-11T20:23:14","cvss":5.3,"cvss_version":"3.1","epss":0.0259,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21913"],"products":["Windows 10 Version 1909","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2","Windows 8.1","Windows 10 Version 1607","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows 7","Windows 10 Version 21H1","Windows Server 2012","Windows Server version 20H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 7 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21914","summary":"Windows Remote Access Connection Manager Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01154,"ranking_epss":0.78943,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21914","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21914"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27070","description":"Windows Remote Access Connection Manager Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:23:14","cvss":7.8,"cvss_version":"3.1","epss":0.0115,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21914"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows Server version 20H2","Windows 10 Version 1909","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows Server 2022","Windows 8.1","Windows 7","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows 10 Version 1607","Windows Server 2012","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21915","summary":"Windows GDI+ Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4,"cvss_v3":6.5,"cvss_v4":null,"epss":0.14233,"ranking_epss":0.94551,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21915","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21915"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27071","description":"Windows GDI+ Information Disclosure Vulnerability","published_time":"2022-01-11T20:23:15","cvss":6.5,"cvss_version":"3.1","epss":0.1423,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21915"],"products":["Windows 10 Version 1809","Windows Server 2012","Windows Server 2016","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2022","Windows Server 2008  Service Pack 2","Windows Server 2012 R2","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21916","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01429,"ranking_epss":0.81067,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21916","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21916"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27072","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:23:16","cvss":7.8,"cvss_version":"3.1","epss":0.0143,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21916"],"products":["Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2022","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1507","Windows Server 2019","Windows 7","Windows 8.1","Windows 10 Version 1909","Windows 10 Version 21H2","Windows Server 2012","Windows 10 Version 1809","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21918","summary":"DirectX Graphics Kernel File Denial of Service Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":6.5,"cvss_v4":null,"epss":0.01826,"ranking_epss":0.83302,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21918","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21918"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27074","description":"DirectX Graphics Kernel File Denial of Service Vulnerability","published_time":"2022-01-11T20:23:18","cvss":6.5,"cvss_version":"3.1","epss":0.0183,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21918"],"products":["Windows Server 2019","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 1909","Windows 11 version 21H2","Windows Server version 20H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21920","summary":"Windows Kerberos Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9,"cvss_v3":8.8,"cvss_v4":null,"epss":0.08741,"ranking_epss":0.92687,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21920","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21920"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27076","description":"Windows Kerberos Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:23:19","cvss":8.8,"cvss_version":"3.1","epss":0.0874,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21920"],"products":["Windows Server version 20H2","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows 11 version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows 7","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1909","Windows 10 Version 1507","Windows Server 2012","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21921","summary":"Windows Defender Credential Guard Security Feature Bypass Vulnerability","cvss":4.4,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":4.4,"cvss_v4":null,"epss":0.01677,"ranking_epss":0.82569,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21921","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21921"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27077","description":"Windows Defender Credential Guard Security Feature Bypass Vulnerability","published_time":"2022-01-11T20:23:20","cvss":4.4,"cvss_version":"3.1","epss":0.0168,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21921"],"products":["Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21922","summary":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9,"cvss_v3":8.8,"cvss_v4":null,"epss":0.08741,"ranking_epss":0.92687,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21922","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21922"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27078","description":"Remote Procedure Call Runtime Remote Code Execution Vulnerability","published_time":"2022-01-11T20:23:21","cvss":8.8,"cvss_version":"3.1","epss":0.0874,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21922"],"products":["Windows Server 2022","Windows Server 2016","Windows Server 2012 R2","Windows 7","Windows Server 2019","Windows 8.1","Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server version 20H2","Windows 10 Version 1909","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21924","summary":"Workstation Service Remote Protocol Security Feature Bypass Vulnerability","cvss":5.3,"cvss_version":3,"cvss_v2":5.4,"cvss_v3":5.3,"cvss_v4":null,"epss":0.04185,"ranking_epss":0.88958,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21924","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21924"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27080","description":"Workstation Service Remote Protocol Security Feature Bypass Vulnerability","published_time":"2022-01-11T20:23:22","cvss":5.3,"cvss_version":"3.1","epss":0.0419,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21924"],"products":["Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows 10 Version 1607","Windows Server version 20H2","Windows 7","Windows Server 2012 R2","Windows 8.1","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21928","summary":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","cvss":6.3,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":6.3,"cvss_v4":null,"epss":0.01507,"ranking_epss":0.81582,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21928","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21928"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:13","euvd":{"id":"EUVD-2022-27084","description":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","published_time":"2022-01-11T20:23:23","cvss":6.3,"cvss_version":"3.1","epss":0.0151,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21928"],"products":["Windows 10 Version 21H2","Windows Server version 20H2","Windows Server 2012 R2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 1607","Windows 8.1","Windows Server 2022","Windows 10 Version 1507","Windows Server 2019","Windows Server 2016","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21892","summary":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":6.8,"cvss_v4":null,"epss":0.00313,"ranking_epss":0.54861,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21892","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21892"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27048","description":"Windows Resilient File System (ReFS) Remote Code Execution Vulnerability","published_time":"2022-01-11T20:22:56","cvss":6.8,"cvss_version":"3.1","epss":0.0031,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21892"],"products":["Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2012 R2","Windows Server 2012","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 8.1","Windows Server 2019","Windows 10 Version 1507","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21893","summary":"Remote Desktop Protocol Remote Code Execution Vulnerability","cvss":8,"cvss_version":3,"cvss_v2":8.5,"cvss_v3":8,"cvss_v4":null,"epss":0.13366,"ranking_epss":0.94342,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21893","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21893"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27049","description":"Remote Desktop Protocol Remote Code Execution Vulnerability","published_time":"2022-01-11T20:22:57","cvss":8,"cvss_version":"3.1","epss":0.1337,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21893"],"products":["Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows Server 2008 R2 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows Server version 20H2","Windows 7 Service Pack 1","Windows 10 Version 1607","Windows 7","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2016","Windows 8.1","Windows 10 Version 1909","Windows Server 2012 R2","Windows Server 2019","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21894","summary":"Secure Boot Security Feature Bypass Vulnerability","cvss":4.4,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":4.4,"cvss_v4":null,"epss":0.33643,"ranking_epss":0.9705,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21894","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21894"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27050","description":"Secure Boot Security Feature Bypass Vulnerability","published_time":"2022-01-11T20:22:58","cvss":4.4,"cvss_version":"3.1","epss":0.3364,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21894"],"products":["Windows Server 2012 R2","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1909","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 1507","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows 8.1","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21896","summary":"Windows DWM Core Library Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7,"cvss_v4":null,"epss":0.00433,"ranking_epss":0.63173,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21896","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21896"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27052","description":"Windows DWM Core Library Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:59","cvss":7,"cvss_version":"3.1","epss":0.0043,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21896"],"products":["Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 10 Version 1909","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2022","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21897","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00371,"ranking_epss":0.59355,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21897","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21897"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27053","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:23:00","cvss":7.8,"cvss_version":"3.1","epss":0.0037,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21897"],"products":["Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2008  Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows Server 2008 Service Pack 2","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2019","Windows Server 2016","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2012 R2","Windows 10 Version 20H2","Windows 10 Version 1909","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows 10 Version 1809","Windows 10 Version 1607","Windows 7 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21900","summary":"Windows Hyper-V Security Feature Bypass Vulnerability","cvss":4.6,"cvss_version":3,"cvss_v2":3.8,"cvss_v3":4.6,"cvss_v4":null,"epss":0.00346,"ranking_epss":0.57563,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21900","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21900"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27056","description":"Windows Hyper-V Security Feature Bypass Vulnerability","published_time":"2022-01-11T20:23:03","cvss":4.6,"cvss_version":"3.1","epss":0.0035,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21900"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H2","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2022","Windows 7 Service Pack 1","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2019","Windows 10 Version 1607","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21901","summary":"Windows Hyper-V Elevation of Privilege Vulnerability","cvss":9,"cvss_version":3,"cvss_v2":7.7,"cvss_v3":9,"cvss_v4":null,"epss":0.00459,"ranking_epss":0.64472,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21901","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21901"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27057","description":"Windows Hyper-V Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:23:04","cvss":9,"cvss_version":"3.1","epss":0.0046,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21901"],"products":["Windows Server 2022","Windows 8.1","Windows 10 Version 1909","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1607","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 21H2","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21902","summary":"Windows DWM Core Library Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00692,"ranking_epss":0.72315,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21902","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21902"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27058","description":"Windows DWM Core Library Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:23:05","cvss":7.8,"cvss_version":"3.1","epss":0.0069,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21902"],"products":["Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 1909","Windows Server 2016","Windows Server version 20H2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21905","summary":"Windows Hyper-V Security Feature Bypass Vulnerability","cvss":4.6,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":4.6,"cvss_v4":null,"epss":0.00406,"ranking_epss":0.61522,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21905","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21905"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27061","description":"Windows Hyper-V Security Feature Bypass Vulnerability","published_time":"2022-01-11T20:23:07","cvss":4.6,"cvss_version":"3.1","epss":0.0041,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21905"],"products":["Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows 10 Version 1909","Windows 10 Version 1607","Windows Server 2012 R2","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2019","Windows 10 Version 21H2","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21906","summary":"Windows Defender Application Control Security Feature Bypass Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.0095,"ranking_epss":0.76798,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21906","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21906"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27062","description":"Windows Defender Application Control Security Feature Bypass Vulnerability","published_time":"2022-01-11T20:23:08","cvss":5.5,"cvss_version":"3.1","epss":0.0095,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21906"],"products":["Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 1909","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2022","Windows 10 Version 1809","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21907","summary":"HTTP Protocol Stack Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":10,"cvss_v3":9.8,"cvss_v4":null,"epss":0.91887,"ranking_epss":0.99706,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21907","http://packetstormsecurity.com/files/166730/Microsoft-HTTP-Protocol-Stack-Denial-Of-Service.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21907"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27063","description":"HTTP Protocol Stack Remote Code Execution Vulnerability","published_time":"2022-01-11T20:23:09","cvss":9.8,"cvss_version":"3.1","epss":0.9189,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21907"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2022","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21908","summary":"Windows Installer Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00359,"ranking_epss":0.58464,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21908","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21908"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:12","euvd":{"id":"EUVD-2022-27064","description":"Windows Installer Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:23:10","cvss":7.8,"cvss_version":"3.1","epss":0.0036,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21908"],"products":["Windows Server 2019","Windows Server 2022","Windows 7 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1607","Windows Server 2012","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows 7","Windows 8.1","Windows Server 2016","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21873","summary":"Tile Data Repository Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7,"cvss_v4":null,"epss":0.00394,"ranking_epss":0.60718,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21873","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21873"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27029","description":"Tile Data Repository Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:42","cvss":7,"cvss_version":"3.1","epss":0.0039,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21873"],"products":["Windows Server 2022","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 1909","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21874","summary":"Windows Security Center API Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":10,"cvss_v3":7.8,"cvss_v4":null,"epss":0.03345,"ranking_epss":0.87588,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21874","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21874"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27030","description":"Windows Security Center API Remote Code Execution Vulnerability","published_time":"2022-01-11T20:22:42","cvss":7.8,"cvss_version":"3.1","epss":0.0335,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21874"],"products":["Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows Server 2016","Windows Server 2022","Windows 10 Version 1909","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 1507","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21876","summary":"Win32k Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00697,"ranking_epss":0.7241,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21876","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21876","https://www.zerodayinitiative.com/advisories/ZDI-22-051/"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27032","description":"Win32k Information Disclosure Vulnerability","published_time":"2022-01-11T20:22:44","cvss":5.5,"cvss_version":"3.1","epss":0.007,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21876"],"products":["Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows 10 Version 1507","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 1909","Windows Server 2022","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows 11 version 21H2","Windows Server 2016","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21877","summary":"Storage Spaces Controller Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":5.5,"cvss_v4":null,"epss":0.14993,"ranking_epss":0.94719,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21877","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21877","https://www.zerodayinitiative.com/advisories/ZDI-22-048/"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27033","description":"Storage Spaces Controller Information Disclosure Vulnerability","published_time":"2022-01-11T20:22:45","cvss":5.5,"cvss_version":"3.1","epss":0.1499,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21877"],"products":["Windows Server 2019","Windows Server 2022","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server version 20H2","Windows 10 Version 21H2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21880","summary":"Windows GDI+ Information Disclosure Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":7.8,"cvss_v3":7.5,"cvss_v4":null,"epss":0.19536,"ranking_epss":0.95548,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21880","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21880"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27036","description":"Windows GDI+ Information Disclosure Vulnerability","published_time":"2022-01-11T20:22:47","cvss":7.5,"cvss_version":"3.1","epss":0.1954,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21880"],"products":["Windows Server 2012","Windows 10 Version 21H1","Windows 8.1","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 7","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows 7 Service Pack 1","Windows Server 2019","Windows 10 Version 1909","Windows 10 Version 1507","Windows Server 2016","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21883","summary":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":7.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.09255,"ranking_epss":0.9291,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21883","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21883"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27039","description":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","published_time":"2022-01-11T20:22:50","cvss":7.5,"cvss_version":"3.1","epss":0.0926,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21883"],"products":["Windows Server 2016","Windows 11 version 21H2","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2","Windows 7","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 8.1","Windows 10 Version 1607","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows Server 2022","Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21885","summary":"Windows Remote Access Connection Manager Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00289,"ranking_epss":0.52698,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21885","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21885"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27041","description":"Windows Remote Access Connection Manager Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:51","cvss":7.8,"cvss_version":"3.1","epss":0.0029,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21885"],"products":["Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows 7","Windows Server 2012 R2","Windows 10 Version 1909","Windows 8.1","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 1507","Windows Server version 20H2","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21887","summary":"Win32k Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7,"cvss_v4":null,"epss":0.00463,"ranking_epss":0.64697,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21887","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21887"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27043","description":"Win32k Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:52","cvss":7,"cvss_version":"3.1","epss":0.0046,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21887"],"products":["Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21888","summary":"Windows Modern Execution Server Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":7.8,"cvss_v4":null,"epss":0.03827,"ranking_epss":0.88401,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21888","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21888"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27044","description":"Windows Modern Execution Server Remote Code Execution Vulnerability","published_time":"2022-01-11T20:22:53","cvss":7.8,"cvss_version":"3.1","epss":0.0383,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21888"],"products":["Windows 10 Version 1909","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2022","Windows Server 2019","Windows Server version 20H2","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21889","summary":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":7.5,"cvss_v4":null,"epss":0.18768,"ranking_epss":0.9544,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21889","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21889"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27045","description":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","published_time":"2022-01-11T20:22:54","cvss":7.5,"cvss_version":"3.1","epss":0.1877,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21889"],"products":["Windows Server 2019","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 1507","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2022","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows 7","Windows 10 Version 1809","Windows 8.1","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21890","summary":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":7.5,"cvss_v4":null,"epss":0.18768,"ranking_epss":0.9544,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21890","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21890"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:11","euvd":{"id":"EUVD-2022-27046","description":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","published_time":"2022-01-11T20:22:54","cvss":7.5,"cvss_version":"3.1","epss":0.1877,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21890"],"products":["Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 11 version 21H2","Windows Server 2022","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 8.1","Windows 10 Version 1507","Windows 10 Version 21H1","Windows Server 2012","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21852","summary":"Windows DWM Core Library Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00384,"ranking_epss":0.60087,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21852","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21852"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:10","euvd":{"id":"EUVD-2022-27008","description":"Windows DWM Core Library Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:27","cvss":7.8,"cvss_version":"3.1","epss":0.0038,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21852"],"products":["Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1909","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21857","summary":"Active Directory Domain Services Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9,"cvss_v3":8.8,"cvss_v4":null,"epss":0.07196,"ranking_epss":0.91787,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21857","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21857"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:10","euvd":{"id":"EUVD-2022-27013","description":"Active Directory Domain Services Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:29","cvss":8.8,"cvss_version":"3.1","epss":0.072,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21857"],"products":["Windows 10 Version 1909","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2012","Windows Server 2012 R2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2","Windows 11 version 21H2","Windows 7","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21858","summary":"Windows Bind Filter Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00414,"ranking_epss":0.61976,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21858","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21858"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:10","euvd":{"id":"EUVD-2022-27014","description":"Windows Bind Filter Driver Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:29","cvss":7.8,"cvss_version":"3.1","epss":0.0041,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21858"],"products":["Windows Server 2022","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 1909","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21861","summary":"Task Flow Data Engine Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7,"cvss_v4":null,"epss":0.00313,"ranking_epss":0.54852,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21861","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21861"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:10","euvd":{"id":"EUVD-2022-27017","description":"Task Flow Data Engine Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:32","cvss":7,"cvss_version":"3.1","epss":0.0031,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21861"],"products":["Windows 10 Version 21H2","Windows Server 2019","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 20H2","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21862","summary":"Windows Application Model Core API Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7,"cvss_v4":null,"epss":0.00285,"ranking_epss":0.52344,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21862","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21862"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:10","euvd":{"id":"EUVD-2022-27018","description":"Windows Application Model Core API Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:33","cvss":7,"cvss_version":"3.1","epss":0.0029,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21862"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows 8.1","Windows 10 Version 1607","Windows 10 Version 21H2","Windows Server 2022","Windows Server version 20H2","Windows 10 Version 1507","Windows 10 Version 1809","Windows 7","Windows 10 Version 20H2","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21864","summary":"Windows UI Immersive Server API Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00356,"ranking_epss":0.58301,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21864","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21864"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:10","euvd":{"id":"EUVD-2022-27020","description":"Windows UI Immersive Server API Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:34","cvss":7,"cvss_version":"3.1","epss":0.0036,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21864"],"products":["Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012","Windows 8.1","Windows 10 Version 20H2","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2022","Windows Server version 20H2","Windows 10 Version 1909","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21866","summary":"Windows System Launcher Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.4,"cvss_v3":7,"cvss_v4":null,"epss":0.00408,"ranking_epss":0.61643,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21866","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21866"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:10","euvd":{"id":"EUVD-2022-27022","description":"Windows System Launcher Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:36","cvss":7,"cvss_version":"3.1","epss":0.0041,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21866"],"products":["Windows Server 2016","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 1607","Windows Server version 20H2","Windows 10 Version 1909","Windows Server 2022","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21870","summary":"Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7,"cvss_v4":null,"epss":0.00394,"ranking_epss":0.60718,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21870","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21870"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:10","euvd":{"id":"EUVD-2022-27026","description":"Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:39","cvss":7,"cvss_version":"3.1","epss":0.0039,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21870"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows Server 2012 R2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server 2022","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 8.1","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21872","summary":"Windows Event Tracing Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7,"cvss_v4":null,"epss":0.00394,"ranking_epss":0.60718,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21872","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21872"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:10","euvd":{"id":"EUVD-2022-27028","description":"Windows Event Tracing Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:41","cvss":7,"cvss_version":"3.1","epss":0.0039,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21872"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows 10 Version 1909","Windows Server version 20H2","Windows 11 version 21H2","Windows Server 2019","Windows Server 2022","Windows 10 Version 21H1","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21833","summary":"Virtual Machine IDE Drive Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00209,"ranking_epss":0.43384,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21833","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21833"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-26989","description":"Virtual Machine IDE Drive Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:13","cvss":7.8,"cvss_version":"3.1","epss":0.0021,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21833"],"products":["Windows 10 Version 21H2","Windows 10 Version 1507","Windows Server 2016","Windows Server 2012 R2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2019","Windows Server version 20H2","Windows 11 version 21H2","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows 10 Version 1607","Windows 7","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21834","summary":"Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7,"cvss_v4":null,"epss":0.00218,"ranking_epss":0.4454,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21834","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21834"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-26990","description":"Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:14","cvss":7,"cvss_version":"3.1","epss":0.0022,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21834"],"products":["Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 7","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2008 Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1507","Windows 8.1","Windows 10 Version 1909","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2016","Windows Server version 20H2","Windows 10 Version 21H2","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21835","summary":"Microsoft Cryptographic Services Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00289,"ranking_epss":0.52698,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21835","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21835"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-26991","description":"Microsoft Cryptographic Services Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:15","cvss":7.8,"cvss_version":"3.1","epss":0.0029,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21835"],"products":["Windows 10 Version 21H2","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008  Service Pack 2","Windows Server 2008 Service Pack 2","Windows Server 2016","Windows Server 2012 R2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows 10 Version 1909","Windows 7","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows Server 2012","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21836","summary":"Windows Certificate Spoofing Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00407,"ranking_epss":0.6156,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21836","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21836"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-26992","description":"Windows Certificate Spoofing Vulnerability","published_time":"2022-01-11T20:22:16","cvss":7.8,"cvss_version":"3.1","epss":0.0041,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21836"],"products":["Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2019","Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server version 20H2","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 7","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1507","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21838","summary":"Windows Cleanup Manager Elevation of Privilege Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00373,"ranking_epss":0.59416,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21838","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21838","https://www.zerodayinitiative.com/advisories/ZDI-22-049/"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-26994","description":"Windows Cleanup Manager Elevation of Privilege Vulnerability","published_time":"2022-01-11T20:22:18","cvss":5.5,"cvss_version":"3.1","epss":0.0037,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21838"],"products":["Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1809","Windows 8.1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows 7 Service Pack 1","Windows 7","Windows Server 2012 R2","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1","Windows Server version 20H2","Windows Server 2012","Windows Server 2019","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21843","summary":"Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":7.5,"cvss_v4":null,"epss":0.16481,"ranking_epss":0.95048,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21843","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21843"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-26999","description":"Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability","published_time":"2022-01-11T20:22:21","cvss":7.5,"cvss_version":"3.1","epss":0.1648,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21843"],"products":["Windows 10 Version 1909","Windows 10 Version 1607","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 1507","Windows Server 2012","Windows 10 Version 1809","Windows 7","Windows 8.1","Windows 10 Version 21H2","Windows Server 2019","Windows 7 Service Pack 1","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows Server 2022","Windows 10 Version 1809","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21847","summary":"Windows Hyper-V Denial of Service Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":6.5,"cvss_v4":null,"epss":0.00292,"ranking_epss":0.52963,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21847","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21847"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-27003","description":"Windows Hyper-V Denial of Service Vulnerability","published_time":"2022-01-11T20:22:23","cvss":6.5,"cvss_version":"3.1","epss":0.0029,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21847"],"products":["Windows 10 Version 21H1","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 10 Version 1809","Windows 11 version 21H2","Windows 10 Version 1909","Windows 10 Version 21H2","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21848","summary":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":7.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.12364,"ranking_epss":0.94046,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21848","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21848"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-27004","description":"Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability","published_time":"2022-01-11T20:22:24","cvss":7.5,"cvss_version":"3.1","epss":0.1236,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21848"],"products":["Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows 10 Version 1607","Windows Server 2016","Windows 10 Version 21H1","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 7 Service Pack 1","Windows 10 Version 1909","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows Server 2012","Windows 7","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21849","summary":"Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability","cvss":9.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":9.8,"cvss_v4":null,"epss":0.24801,"ranking_epss":0.96274,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21849","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21849"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-27005","description":"Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability","published_time":"2022-01-11T20:22:25","cvss":9.8,"cvss_version":"3.1","epss":0.248,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21849"],"products":["Windows 10 Version 21H2","Windows Server 2019","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 1909","Windows Server version 20H2","Windows 10 Version 1607","Windows 10 Version 1809","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21850","summary":"Remote Desktop Client Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":8.8,"cvss_v4":null,"epss":0.09979,"ranking_epss":0.9321,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21850","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21850"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-27006","description":"Remote Desktop Client Remote Code Execution Vulnerability","published_time":"2022-01-11T20:22:25","cvss":8.8,"cvss_version":"3.1","epss":0.0998,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21850"],"products":["Windows Server 2016","Windows 8.1","Windows Server 2022","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1809","Remote Desktop client for Windows Desktop","Windows 10 Version 1507","Windows Server 2012","Windows 10 Version 1909","Windows 7 Service Pack 1","Windows Server version 20H2","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 7","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2022-21851","summary":"Remote Desktop Client Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":9.3,"cvss_v3":8.8,"cvss_v4":null,"epss":0.09979,"ranking_epss":0.9321,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21851","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21851"],"vendor":null,"product":null,"version":null,"published_time":"2022-01-11T21:15:09","euvd":{"id":"EUVD-2022-27007","description":"Remote Desktop Client Remote Code Execution Vulnerability","published_time":"2022-01-11T20:22:26","cvss":8.8,"cvss_version":"3.1","epss":0.0998,"assigner":"microsoft","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21851"],"products":["Windows 7","Windows Server 2008 Service Pack 2","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server version 20H2","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server 2012","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Remote Desktop client for Windows Desktop","Windows Server 2016","Windows Server 2022","Windows Server 2019","Windows Server 2012 R2","Windows 10 Version 1909","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 8.1","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43883","summary":"Windows Installer Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.09119,"ranking_epss":0.92855,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43883","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43883"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:11","euvd":{"id":"EUVD-2021-30745","description":"Windows Installer Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:33","cvss":7.8,"cvss_version":"3.1","epss":0.0912,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43883"],"products":["Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server version 2004","Windows 10 Version 20H2","Windows 7","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 2004","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012","Windows 10 Version 1909","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2012 R2","Windows 10 Version 1809","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows 8.1","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 1507","Windows 10 Version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43893","summary":"Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":6,"cvss_v3":7.5,"cvss_v4":null,"epss":0.06763,"ranking_epss":0.91504,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["http://packetstormsecurity.com/files/165560/Microsoft-Windows-EFSRPC-Arbitrary-File-Upload-Privilege-Escalation.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43893","http://packetstormsecurity.com/files/165560/Microsoft-Windows-EFSRPC-Arbitrary-File-Upload-Privilege-Escalation.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43893"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:11","euvd":{"id":"EUVD-2021-30755","description":"Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:37","cvss":7.5,"cvss_version":"3.1","epss":0.0676,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43893","http://packetstormsecurity.com/files/165560/Microsoft-Windows-EFSRPC-Arbitrary-File-Upload-Privilege-Escalation.html"],"products":["Windows Server version 2004","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 20H2","Windows Server version 20H2","Windows Server 2016","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2019","Windows 7","Windows 10 Version 1809","Windows 10 Version 1909","Windows 10 Version 2004","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows 8.1","Windows Server 2008 Service Pack 2","Windows Server 2012","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows Server 2022","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43233","summary":"Remote Desktop Client Remote Code Execution Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":7.5,"cvss_v4":null,"epss":0.02683,"ranking_epss":0.86176,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43233","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43233"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30177","description":"Remote Desktop Client Remote Code Execution Vulnerability","published_time":"2021-12-15T14:15:17","cvss":7.5,"cvss_version":"3.1","epss":0.0268,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43233"],"products":["Windows 10 Version 1607","Windows 10 Version 2004","Windows Server 2019","Windows 7 Service Pack 1","Windows Server version 2004","Windows Server 2012 R2 (Server Core installation)","Windows 7","Windows 10 Version 1909","Windows Server 2012 R2","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows Server 2022","Windows 8.1","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1507","Windows Server version 20H2","Windows 10 Version 21H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43234","summary":"Windows Fax Service Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.8,"cvss_v4":null,"epss":0.01328,"ranking_epss":0.80349,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43234","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43234"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30178","description":"Windows Fax Service Remote Code Execution Vulnerability","published_time":"2021-12-15T14:15:18","cvss":7.8,"cvss_version":"3.1","epss":0.0133,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43234"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012","Windows 10 Version 1909","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 8.1","Windows Server 2016 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022","Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows Server version 20H2","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows 7","Windows 10 Version 1607","Windows Server version 2004","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012","Windows 10 Version 2004","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43235","summary":"Storage Spaces Controller Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00442,"ranking_epss":0.63734,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43235","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43235"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30179","description":"Storage Spaces Controller Information Disclosure Vulnerability","published_time":"2021-12-15T14:15:19","cvss":5.5,"cvss_version":"3.1","epss":0.0044,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43235"],"products":["Windows Server 2016","Windows Server version 2004","Windows 10 Version 1507","Windows 10 Version 1909","Windows 10 Version 21H1","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server version 20H2","Windows Server 2019","Windows Server 2022","Windows 10 Version 1607","Windows 10 Version 2004","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43236","summary":"Microsoft Message Queuing Information Disclosure Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.15587,"ranking_epss":0.94845,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43236","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43236"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30180","description":"Microsoft Message Queuing Information Disclosure Vulnerability","published_time":"2021-12-15T14:15:19","cvss":7.5,"cvss_version":"3.1","epss":0.1559,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43236"],"products":["Windows Server 2016","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows 8.1","Windows Server 2012 R2","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012","Windows 10 Version 2004","Windows Server 2008 Service Pack 2","Windows Server version 2004","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1909","Windows Server 2012","Windows Server 2008  Service Pack 2","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H1","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43237","summary":"Windows Setup Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.9,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00719,"ranking_epss":0.72923,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43237","https://www.zerodayinitiative.com/advisories/ZDI-22-018/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43237","https://www.zerodayinitiative.com/advisories/ZDI-22-018/"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30181","description":"Windows Setup Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:20","cvss":7.8,"cvss_version":"3.1","epss":0.0072,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43237","https://www.zerodayinitiative.com/advisories/ZDI-22-018/"],"products":["Windows 11 version 21H2","Windows Server 2022","Windows Server version 20H2","Windows 10 Version 21H1","Windows 10 Version 1909","Windows 10 Version 21H2","Windows 10 Version 20H2","Windows 10 Version 2004","Windows Server version 2004"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43238","summary":"Windows Remote Access Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.0042,"ranking_epss":0.62343,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43238","https://www.zerodayinitiative.com/advisories/ZDI-22-019/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43238","https://www.zerodayinitiative.com/advisories/ZDI-22-019/"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30182","description":"Windows Remote Access Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:21","cvss":7.8,"cvss_version":"3.1","epss":0.0042,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43238","https://www.zerodayinitiative.com/advisories/ZDI-22-019/"],"products":["Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows 10 Version 2004","Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows Server version 2004","Windows Server 2012","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows 10 Version 20H2","Windows 10 Version 1909","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows 10 Version 1507","Windows Server 2016","Windows 7","Windows Server version 20H2","Windows 10 Version 1607","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43239","summary":"Windows Recovery Environment Agent Elevation of Privilege Vulnerability","cvss":7.1,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.1,"cvss_v4":null,"epss":0.00214,"ranking_epss":0.43991,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43239","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43239"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30183","description":"Windows Recovery Environment Agent Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:22","cvss":7.1,"cvss_version":"3.1","epss":0.0021,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43239"],"products":["Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server version 2004","Windows Server 2022","Windows 10 Version 21H1","Windows Server version 20H2","Windows 10 Version 20H2","Windows 10 Version 2004"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43240","summary":"NTFS Set Short Name Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00502,"ranking_epss":0.66488,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43240","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43240"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30184","description":"NTFS Set Short Name Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:22","cvss":7.8,"cvss_version":"3.1","epss":0.005,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43240"],"products":["Windows 11 version 21H2","Windows 10 Version 21H2","Windows Server version 20H2","Windows Server version 2004","Windows 10 Version 20H2","Windows 10 Version 2004","Windows 10 Version 21H1","Windows Server 2022","Windows 10 Version 1909"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43247","summary":"Windows TCP/IP Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00702,"ranking_epss":0.72512,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43247","https://www.zerodayinitiative.com/advisories/ZDI-21-1554/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43247","https://www.zerodayinitiative.com/advisories/ZDI-21-1554/"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30191","description":"Windows TCP/IP Driver Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:27","cvss":7.8,"cvss_version":"3.1","epss":0.007,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43247","https://www.zerodayinitiative.com/advisories/ZDI-21-1554/"],"products":["Windows 10 Version 20H2","Windows 10 Version 1809","Windows Server version 2004","Windows 10 Version 21H1","Windows 10 Version 2004","Windows 10 Version 21H2","Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1909","Windows Server 2019","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43248","summary":"Windows Digital Media Receiver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00262,"ranking_epss":0.49913,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43248","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43248"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30192","description":"Windows Digital Media Receiver Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:28","cvss":7.8,"cvss_version":"3.1","epss":0.0026,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43248"],"products":["Windows Server 2012 R2","Windows 10 Version 21H1","Windows 10 Version 1909","Windows 10 Version 1507","Windows Server 2012","Windows Server version 2004","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows 10 Version 1607","Windows Server 2012","Windows 10 Version 2004","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 1809","Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43880","summary":"Windows Mobile Device Management Elevation of Privilege Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":3.6,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00237,"ranking_epss":0.47052,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43880","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43880"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:10","euvd":{"id":"EUVD-2021-30742","description":"Windows Mobile Device Management Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:32","cvss":5.5,"cvss_version":"3.1","epss":0.0024,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43880"],"products":["Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43207","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00319,"ranking_epss":0.55327,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43207","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43207"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30151","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:03","cvss":7.8,"cvss_version":"3.1","epss":0.0032,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43207"],"products":["Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2019","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server version 2004","Windows 10 Version 1809","Windows Server 2012","Windows 10 Version 1607","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 2004","Windows Server 2012","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows Server version 20H2","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43215","summary":"iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution","cvss":9.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":9.8,"cvss_v4":null,"epss":0.04564,"ranking_epss":0.89443,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43215","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43215"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30159","description":"iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution","published_time":"2021-12-15T14:15:05","cvss":9.8,"cvss_version":"3.1","epss":0.0456,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43215"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows 7","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows Server version 2004","Windows 10 Version 20H2","Windows 10 Version 21H2","Windows 7 Service Pack 1","Windows 10 Version 1607","Windows 10 Version 2004","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows Server 2012","Windows 10 Version 1507","Windows Server 2008 Service Pack 2","Windows 10 Version 1909","Windows Server version 20H2","Windows Server 2008  Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43216","summary":"Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":6.5,"cvss_v4":null,"epss":0.18233,"ranking_epss":0.95349,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43216","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43216"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30160","description":"Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability","published_time":"2021-12-15T14:15:06","cvss":6.5,"cvss_version":"3.1","epss":0.1823,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43216"],"products":["Windows 10 Version 2004","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1607","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server version 20H2","Windows Server 2016","Windows 10 Version 1909","Windows 7","Windows 11 version 21H2","Windows Server 2019","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H2","Windows Server version 2004","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 7 Service Pack 1","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43217","summary":"Windows Encrypting File System (EFS) Remote Code Execution Vulnerability","cvss":8.1,"cvss_version":3,"cvss_v2":7.5,"cvss_v3":8.1,"cvss_v4":null,"epss":0.23665,"ranking_epss":0.96113,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43217","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43217"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30161","description":"Windows Encrypting File System (EFS) Remote Code Execution Vulnerability","published_time":"2021-12-15T14:15:07","cvss":8.1,"cvss_version":"3.1","epss":0.2367,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43217"],"products":["Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 2004","Windows 10 Version 20H2","Windows Server 2008  Service Pack 2","Windows 11 version 21H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 1909","Windows 7","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows Server 2012","Windows 7 Service Pack 1","Windows Server 2022","Windows Server 2008 Service Pack 2","Windows 10 Version 21H2","Windows Server version 2004","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2016","Windows Server 2012 R2","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43219","summary":"DirectX Graphics Kernel File Denial of Service Vulnerability","cvss":7.4,"cvss_version":3,"cvss_v2":7.8,"cvss_v3":7.4,"cvss_v4":null,"epss":0.02222,"ranking_epss":0.84863,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43219","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43219"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30163","description":"DirectX Graphics Kernel File Denial of Service Vulnerability","published_time":"2021-12-15T14:15:08","cvss":7.4,"cvss_version":"3.1","epss":0.0222,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43219"],"products":["Windows 11 version 21H2","Windows Server version 2004","Windows 10 Version 2004","Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server version 20H2","Windows 10 Version 1909","Windows Server 2019","Windows Server 2022","Windows 10 Version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43222","summary":"Microsoft Message Queuing Information Disclosure Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.15587,"ranking_epss":0.94845,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43222","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43222"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30166","description":"Microsoft Message Queuing Information Disclosure Vulnerability","published_time":"2021-12-15T14:15:09","cvss":7.5,"cvss_version":"3.1","epss":0.1559,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43222"],"products":["Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1507","Windows 10 Version 1909","Windows 10 Version 20H2","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2012","Windows Server 2012 R2","Windows 7","Windows Server 2022","Windows Server 2019","Windows 10 Version 1809","Windows Server 2016","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 2004","Windows 7 Service Pack 1","Windows 8.1","Windows Server version 2004","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43224","summary":"Windows Common Log File System Driver Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.12746,"ranking_epss":0.94161,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43224","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43224"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30168","description":"Windows Common Log File System Driver Information Disclosure Vulnerability","published_time":"2021-12-15T14:15:10","cvss":5.5,"cvss_version":"3.1","epss":0.1275,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43224"],"products":["Windows 7","Windows Server 2019","Windows 10 Version 2004","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows Server version 2004","Windows 10 Version 21H2","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2012 R2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows Server 2016","Windows Server 2012","Windows 7 Service Pack 1","Windows Server version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows 11 version 21H2","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43227","summary":"Storage Spaces Controller Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00542,"ranking_epss":0.68149,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43227","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43227"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30171","description":"Storage Spaces Controller Information Disclosure Vulnerability","published_time":"2021-12-15T14:15:12","cvss":5.5,"cvss_version":"3.1","epss":0.0054,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43227"],"products":["Windows 10 Version 1909","Windows Server version 20H2","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H2","Windows 10 Version 2004","Windows Server version 2004","Windows Server 2019","Windows Server 2022","Windows Server 2016","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43228","summary":"SymCrypt Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":7.8,"cvss_v3":7.5,"cvss_v4":null,"epss":0.13056,"ranking_epss":0.94255,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43228","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43228"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30172","description":"SymCrypt Denial of Service Vulnerability","published_time":"2021-12-15T14:15:13","cvss":7.5,"cvss_version":"3.1","epss":0.1306,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43228"],"products":["Windows Server version 2004","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H2","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1909","Windows 10 Version 21H1","Windows 10 Version 2004","Windows Server 2022","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43229","summary":"Windows NTFS Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.11892,"ranking_epss":0.93904,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43229","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43229"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30173","description":"Windows NTFS Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:14","cvss":7.8,"cvss_version":"3.1","epss":0.1189,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43229"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 8.1","Windows Server 2012","Windows Server 2019","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows 7 Service Pack 1","Windows 10 Version 21H2","Windows 7","Windows 10 Version 1809","Windows Server version 20H2","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows Server version 2004","Windows Server 2012 R2","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 2004","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43230","summary":"Windows NTFS Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00734,"ranking_epss":0.73219,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43230","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43230"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30174","description":"Windows NTFS Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:15","cvss":7.8,"cvss_version":"3.1","epss":0.0073,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43230"],"products":["Windows Server 2022","Windows 10 Version 2004","Windows 10 Version 1909","Windows Server 2008  Service Pack 2","Windows Server version 2004","Windows 10 Version 1507","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1809","Windows 11 version 21H2","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2019","Windows 7","Windows Server version 20H2","Windows Server 2016","Windows 10 Version 21H1","Windows 10 Version 21H2","Windows Server 2008 Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43231","summary":"Windows NTFS Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00514,"ranking_epss":0.67031,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43231","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43231"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30175","description":"Windows NTFS Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:15:16","cvss":7.8,"cvss_version":"3.1","epss":0.0051,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43231"],"products":["Windows 10 Version 21H1","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 21H2","Windows Server version 2004","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 2004","Windows Server 2022","Windows 10 Version 1909","Windows Server 2016","Windows Server 2019","Windows 10 Version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-43232","summary":"Windows Event Tracing Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.8,"cvss_v4":null,"epss":0.04481,"ranking_epss":0.89351,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43232","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43232"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:09","euvd":{"id":"EUVD-2021-30176","description":"Windows Event Tracing Remote Code Execution Vulnerability","published_time":"2021-12-15T14:15:16","cvss":7.8,"cvss_version":"3.1","epss":0.0448,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43232"],"products":["Windows 10 Version 21H1","Windows 10 Version 1809","Windows Server 2016","Windows Server 2012","Windows 10 Version 21H2","Windows Server 2012 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 2004","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows Server version 2004","Windows 10 Version 20H2","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 1607","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012 R2","Windows Server version 20H2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41333","summary":"Windows Print Spooler Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00653,"ranking_epss":0.71398,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41333","https://www.zerodayinitiative.com/advisories/ZDI-21-1552/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41333","https://www.zerodayinitiative.com/advisories/ZDI-21-1552/"],"vendor":null,"product":null,"version":null,"published_time":"2021-12-15T15:15:08","euvd":{"id":"EUVD-2021-28362","description":"Windows Print Spooler Elevation of Privilege Vulnerability","published_time":"2021-12-15T14:14:51","cvss":7.8,"cvss_version":"3.1","epss":0.0065,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41333","https://www.zerodayinitiative.com/advisories/ZDI-21-1552/"],"products":["Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows 10 Version 21H2","Windows Server 2022","Windows Server version 20H2","Windows 8.1","Windows Server 2012","Windows Server 2016 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 1909","Windows Server 2012","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows Server version 2004","Windows 10 Version 1809","Windows 10 Version 1607","Windows 7","Windows 10 Version 2004","Windows Server 2012 (Server Core installation)","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-42283","summary":"NTFS Elevation of Privilege Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":8.8,"cvss_v4":null,"epss":0.00234,"ranking_epss":0.46452,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42283","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42283"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:45","euvd":{"id":"EUVD-2021-29258","description":"NTFS Elevation of Privilege Vulnerability","published_time":"2021-11-10T00:47:14","cvss":8.8,"cvss_version":"3.1","epss":0.0023,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42283"],"products":["Windows 7","Windows Server 2012","Windows Server 2008  Service Pack 2","Windows Server 2012 R2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 2004","Windows 10 Version 1909","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows 7 Service Pack 1","Windows Server version 2004","Windows 10 Version 1507","Windows Server 2019","Windows 11 version 21H2","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-42284","summary":"Windows Hyper-V Denial of Service Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":7.1,"cvss_v3":6.8,"cvss_v4":null,"epss":0.05824,"ranking_epss":0.90733,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42284","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42284"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:45","euvd":{"id":"EUVD-2021-29259","description":"Windows Hyper-V Denial of Service Vulnerability","published_time":"2021-11-10T00:47:16","cvss":6.8,"cvss_version":"3.1","epss":0.0582,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42284"],"products":["Windows 10 Version 2004","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server version 2004","Windows Server 2022","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 1909","Windows 11 version 21H2","Windows 10 Version 1809","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2019","Windows 8.1","Windows Server 2012 R2","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-42285","summary":"Windows Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00256,"ranking_epss":0.49267,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42285","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42285"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:45","euvd":{"id":"EUVD-2021-29260","description":"Windows Kernel Elevation of Privilege Vulnerability","published_time":"2021-11-10T00:47:17","cvss":7.8,"cvss_version":"3.1","epss":0.0026,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42285"],"products":["Windows 10 Version 2004","Windows Server 2012 (Server Core installation)","Windows 7","Windows Server 2016","Windows Server 2012 R2","Windows Server 2012","Windows Server 2019","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1909","Windows Server version 2004","Windows Server 2022","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows 8.1","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-42277","summary":"Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00263,"ranking_epss":0.50045,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42277","https://www.zerodayinitiative.com/advisories/ZDI-21-1306/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42277","https://www.zerodayinitiative.com/advisories/ZDI-21-1306/"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:44","euvd":{"id":"EUVD-2021-29253","description":"Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability","published_time":"2021-11-10T00:47:02","cvss":5.5,"cvss_version":"3.1","epss":0.0026,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42277","https://www.zerodayinitiative.com/advisories/ZDI-21-1306/"],"products":["Microsoft Visual Studio 2015 Update 3","Windows 10 Version 1507","Windows 10 Version 21H1","Windows Server version 2004","Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)","Windows 11 version 21H2","Windows Server 2016","Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)","Windows 10 Version 2004","Windows 10 Version 1607","Windows Server 2016 (Server Core installation)","Windows 10 Version 1909","Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6)","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows Server 2019","Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)","Windows 10 Version 20H2","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-42279","summary":"Chakra Scripting Engine Memory Corruption Vulnerability","cvss":4.2,"cvss_version":3,"cvss_v2":5.1,"cvss_v3":4.2,"cvss_v4":null,"epss":0.02954,"ranking_epss":0.86772,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42279","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42279"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:44","euvd":{"id":"EUVD-2022-4364","description":"Chakra Scripting Engine Memory Corruption Vulnerability","published_time":"2021-11-10T00:47:07","cvss":4.2,"cvss_version":"3.1","epss":0.0295,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42279"],"products":["Windows 10 Version 1909","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 1607","Windows Server 2019","Windows Server version 2004","Windows 10 Version 1507","Windows 10 Version 21H1","Windows 10 Version 2004","Windows Server version 20H2","ChakraCore","Windows 10 Version 1809","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-42280","summary":"Windows Feedback Hub Elevation of Privilege Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00157,"ranking_epss":0.3626,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42280","https://www.zerodayinitiative.com/advisories/ZDI-21-1307/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42280","https://www.zerodayinitiative.com/advisories/ZDI-21-1307/"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:44","euvd":{"id":"EUVD-2021-29255","description":"Windows Feedback Hub Elevation of Privilege Vulnerability","published_time":"2021-11-10T00:47:09","cvss":5.5,"cvss_version":"3.1","epss":0.0016,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42280","https://www.zerodayinitiative.com/advisories/ZDI-21-1307/"],"products":["Windows 10 Version 1909","Windows Server version 2004","Windows 10 Version 20H2","Windows 10 Version 2004","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2019","Windows Server version 20H2","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 1809","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-42274","summary":"Windows Hyper-V Discrete Device Assignment (DDA) Denial of Service Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":6.8,"cvss_v4":null,"epss":0.00135,"ranking_epss":0.3314,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42274","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42274"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:43","euvd":{"id":"EUVD-2021-29250","description":"Windows Hyper-V Discrete Device Assignment (DDA) Denial of Service Vulnerability","published_time":"2021-11-10T00:46:57","cvss":6.8,"cvss_version":"3.1","epss":0.0014,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42274"],"products":["Windows 10 Version 2004","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows Server version 2004","Windows 10 Version 1809","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows Server 2016","Windows 10 Version 21H1","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-42275","summary":"Microsoft COM for Windows Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.5,"cvss_v3":8.8,"cvss_v4":null,"epss":0.03811,"ranking_epss":0.8837,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42275","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42275"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:43","euvd":{"id":"EUVD-2021-29251","description":"Microsoft COM for Windows Remote Code Execution Vulnerability","published_time":"2021-11-10T00:46:58","cvss":8.8,"cvss_version":"3.1","epss":0.0381,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42275"],"products":["Windows 10 Version 2004","Windows 7","Windows 10 Version 21H1","Windows Server 2016","Windows 8.1","Windows Server version 2004","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows Server 2008 Service Pack 2","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 1909","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2012 R2","Windows Server 2012 (Server Core installation)","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-42276","summary":"Microsoft Windows Media Foundation Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.8,"cvss_v4":null,"epss":0.05415,"ranking_epss":0.90352,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42276","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42276"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:43","euvd":{"id":"EUVD-2021-29252","description":"Microsoft Windows Media Foundation Remote Code Execution Vulnerability","published_time":"2021-11-10T00:47:00","cvss":7.8,"cvss_version":"3.1","epss":0.0542,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42276"],"products":["Windows 10 Version 20H2","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 1507","Windows 10 Version 1909","Windows 10 Version 2004","Windows 10 Version 1607","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2016","Windows Server version 2004","Windows Server version 20H2","Windows 10 Version 1809"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41377","summary":"Windows Fast FAT File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00318,"ranking_epss":0.5525,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41377","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41377"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:31","euvd":{"id":"EUVD-2021-28405","description":"Windows Fast FAT File System Driver Elevation of Privilege Vulnerability","published_time":"2021-11-10T00:46:52","cvss":7.8,"cvss_version":"3.1","epss":0.0032,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41377"],"products":["Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016","Windows 8.1","Windows 11 version 21H2","Windows Server 2012 R2","Windows Server version 20H2","Windows 7 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7","Windows Server 2016 (Server Core installation)","Windows 10 Version 2004","Windows Server 2019","Windows Server version 2004","Windows Server 2008 Service Pack 2","Windows Server 2012","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 1909","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41378","summary":"Windows NTFS Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.5,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00755,"ranking_epss":0.73704,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41378","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41378"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:31","euvd":{"id":"EUVD-2021-28406","description":"Windows NTFS Remote Code Execution Vulnerability","published_time":"2021-11-10T00:46:54","cvss":7.8,"cvss_version":"3.1","epss":0.0076,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41378"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server version 2004","Windows Server 2022","Windows Server version 20H2","Windows 10 Version 1909","Windows 11 version 21H2","Windows 10 Version 2004","Windows 10 Version 20H2","Windows Server 2019","Windows 10 Version 21H1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41370","summary":"NTFS Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00234,"ranking_epss":0.46452,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41370","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41370"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:30","euvd":{"id":"EUVD-2021-28398","description":"NTFS Elevation of Privilege Vulnerability","published_time":"2021-11-10T00:46:42","cvss":7.8,"cvss_version":"3.1","epss":0.0023,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41370"],"products":["Windows 10 Version 1607","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 8.1","Windows Server 2019","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1909","Windows Server 2022","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1507","Windows 10 Version 2004","Windows Server 2008  Service Pack 2","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows Server version 2004","Windows Server version 20H2","Windows 7"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41371","summary":"Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability","cvss":4.4,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":4.4,"cvss_v4":null,"epss":0.00584,"ranking_epss":0.695,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41371","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41371"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:30","euvd":{"id":"EUVD-2021-28399","description":"Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability","published_time":"2021-11-10T00:46:43","cvss":4.4,"cvss_version":"3.1","epss":0.0058,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41371"],"products":["Windows Server 2019 (Server Core installation)","Windows 8.1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server version 20H2","Windows 10 Version 1607","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2012","Windows 11 version 21H2","Windows 10 Version 1507","Windows 10 Version 1909","Windows Server 2012 R2","Windows Server version 2004","Windows Server 2008  Service Pack 2","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 7","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 2004","Windows Server 2019","Windows 7 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41356","summary":"Windows Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.04291,"ranking_epss":0.89105,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41356","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41356"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:29","euvd":{"id":"EUVD-2021-28384","description":"Windows Denial of Service Vulnerability","published_time":"2021-11-10T00:46:35","cvss":7.5,"cvss_version":"3.1","epss":0.0429,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41356"],"products":["Windows Server 2019 (Server Core installation)","Windows Server version 2004","Windows 10 Version 2004","Windows Server version 20H2","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2019","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41366","summary":"Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00171,"ranking_epss":0.38106,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41366","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41366"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:29","euvd":{"id":"EUVD-2021-28394","description":"Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability","published_time":"2021-11-10T00:46:37","cvss":7.8,"cvss_version":"3.1","epss":0.0017,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41366"],"products":["Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows 8.1","Windows 10 Version 20H2","Windows 10 Version 1507","Windows Server 2012 R2","Windows Server 2019","Windows Server 2012 (Server Core installation)","Windows 10 Version 2004","Windows 10 Version 1607","Windows Server version 2004","Windows Server 2016","Windows 10 Version 1809","Windows Server 2012","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41367","summary":"NTFS Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00356,"ranking_epss":0.58303,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41367","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41367"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:29","euvd":{"id":"EUVD-2021-28395","description":"NTFS Elevation of Privilege Vulnerability","published_time":"2021-11-10T00:46:38","cvss":7.8,"cvss_version":"3.1","epss":0.0036,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41367"],"products":["Windows Server 2008  Service Pack 2","Windows 7","Windows Server version 20H2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1","Windows 8.1","Windows Server version 2004","Windows 10 Version 1607","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 2004","Windows Server 2012 R2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows Server 2012","Windows 10 Version 20H2","Windows Server 2022","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2019","Windows Server 2008 Service Pack 2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41351","summary":"Microsoft Edge (Chrome based) Spoofing on IE Mode","cvss":4.3,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":4.3,"cvss_v4":null,"epss":0.12295,"ranking_epss":0.94024,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41351","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41351"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:19:28","euvd":{"id":"EUVD-2021-28380","description":"Microsoft Edge (Chrome based) Spoofing on IE Mode","published_time":"2021-11-10T00:46:34","cvss":4.3,"cvss_version":"3.1","epss":0.123,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41351"],"products":["Microsoft Edge (Chromium-based) in IE Mode","Microsoft Edge (Chromium-based) in IE Mode","Microsoft Edge (Chromium-based) in IE Mode","Microsoft Edge (Chromium-based) in IE Mode","Microsoft Edge (Chromium-based) in IE Mode","Microsoft Edge (Chromium-based) in IE Mode"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-38665","summary":"Remote Desktop Protocol Client Information Disclosure Vulnerability","cvss":7.4,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":7.4,"cvss_v4":null,"epss":0.06223,"ranking_epss":0.91081,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38665","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38665"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:18:35","euvd":{"id":"EUVD-2021-25104","description":"Remote Desktop Protocol Client Information Disclosure Vulnerability","published_time":"2021-11-10T00:46:28","cvss":7.4,"cvss_version":"3.1","epss":0.0622,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38665"],"products":["Windows Server 2012 R2","Windows 10 Version 1607","Windows Server 2016","Windows Server 2022","Windows 10 Version 1909","Windows 7 Service Pack 1","Windows 8.1","Windows 10 Version 1809","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows 10 Version 1507","Windows 11 version 21H2","Remote Desktop client for Windows Desktop","Windows 7","Windows Server 2008 R2 Service Pack 1","Windows Server 2012","Windows Server 2019","Windows 10 Version 2004"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-38666","summary":"Remote Desktop Client Remote Code Execution Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":8.8,"cvss_v4":null,"epss":0.31882,"ranking_epss":0.96925,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38666","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38666"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:18:35","euvd":{"id":"EUVD-2021-25105","description":"Remote Desktop Client Remote Code Execution Vulnerability","published_time":"2021-11-10T00:46:29","cvss":8.8,"cvss_version":"3.1","epss":0.3188,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38666"],"products":["Windows Server 2012 R2","Windows Server 2022","Windows 8.1","Windows Server version 2004","Windows Server 2008 R2 Service Pack 1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 10 Version 1909","Windows Server 2008 Service Pack 2","Windows Server 2012","Windows 7","Windows 11 version 21H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1507","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows 10 Version 20H2","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2016 (Server Core installation)","Windows 10 Version 2004","Windows Server 2019","Remote Desktop client for Windows Desktop","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-38631","summary":"Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability","cvss":4.4,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":4.4,"cvss_v4":null,"epss":0.00579,"ranking_epss":0.69342,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38631","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38631"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:18:34","euvd":{"id":"EUVD-2021-25070","description":"Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability","published_time":"2021-11-10T00:46:26","cvss":4.4,"cvss_version":"3.1","epss":0.0058,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38631"],"products":["Windows 10 Version 20H2","Windows Server 2008 Service Pack 2","Windows 8.1","Windows 10 Version 1809","Windows Server 2016","Windows Server 2022","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 7","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows 7 Service Pack 1","Windows 10 Version 1507","Windows Server 2012","Windows 10 Version 2004","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2019","Windows 10 Version 21H1","Windows Server version 2004","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-26443","summary":"Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability","cvss":9,"cvss_version":3,"cvss_v2":7.7,"cvss_v3":9,"cvss_v4":null,"epss":0.0055,"ranking_epss":0.68418,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26443","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26443"],"vendor":null,"product":null,"version":null,"published_time":"2021-11-10T01:16:35","euvd":{"id":"EUVD-2021-13248","description":"Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability","published_time":"2021-11-10T00:46:21","cvss":9,"cvss_version":"3.1","epss":0.0055,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26443"],"products":["Windows Server 2022","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 2004","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server version 2004","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41340","summary":"Windows Graphics Component Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.8,"cvss_v4":null,"epss":0.05174,"ranking_epss":0.90122,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41340","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41340"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:13","euvd":{"id":"EUVD-2021-28369","description":"Windows Graphics Component Remote Code Execution Vulnerability","published_time":"2021-10-13T00:27:58","cvss":7.8,"cvss_version":"3.1","epss":0.0517,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41340"],"products":["Windows 8.1","Windows 10 Version 2004","Windows Server 2016","Windows 10 Version 1909","Windows Server version 2004","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2012 R2","Windows Server 2022","Windows Server version 20H2","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows 7","Windows Server 2008 R2 Service Pack 1","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows 10 Version 1607","Windows Server 2008 Service Pack 2","Windows Server 2008  Service Pack 2","Windows Server 2012"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41342","summary":"Windows MSHTML Platform Remote Code Execution Vulnerability","cvss":6.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":6.8,"cvss_v4":null,"epss":0.02445,"ranking_epss":0.85515,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41342","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41342"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:13","euvd":{"id":"EUVD-2021-28371","description":"Windows MSHTML Platform Remote Code Execution Vulnerability","published_time":"2021-10-13T00:28:00","cvss":6.8,"cvss_version":"3.1","epss":0.0245,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41342"],"products":["Windows 11 version 21H2","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 20H2","Windows 7 Service Pack 1","Windows 10 Version 1909","Windows Server 2012 R2","Windows Server 2008  Service Pack 2","Windows 8.1","Windows Server 2016","Windows 10 Version 1507","Windows 10 Version 2004","Windows 10 Version 21H1","Windows Server 2019","Windows 10 Version 1607","Windows Server 2012","Windows Server 2008 Service Pack 2","Windows 7 Service Pack 1","Windows Server 2012","Windows Server 2008  Service Pack 2","Windows 8.1","Windows 7","Windows 7","Windows Server 2008 Service Pack 2","Windows Server 2022","Windows Server 2008 R2 Service Pack 1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41343","summary":"Windows Fast FAT File System Driver Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00427,"ranking_epss":0.62732,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41343","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41343"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:13","euvd":{"id":"EUVD-2021-28372","description":"Windows Fast FAT File System Driver Information Disclosure Vulnerability","published_time":"2021-10-13T00:28:01","cvss":5.5,"cvss_version":"3.1","epss":0.0043,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41343"],"products":["Windows Server 2008  Service Pack 2","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016","Windows Server 2022","Windows 10 Version 2004","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2012 R2","Windows Server version 20H2","Windows Server 2008 Service Pack 2","Windows 7","Windows Server 2012 R2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1909","Windows 10 Version 20H2","Windows Server version 2004","Windows 10 Version 1607","Windows 8.1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41345","summary":"Storage Spaces Controller Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00436,"ranking_epss":0.63437,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41345","https://www.zerodayinitiative.com/advisories/ZDI-21-1154/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41345","https://www.zerodayinitiative.com/advisories/ZDI-21-1154/"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:13","euvd":{"id":"EUVD-2021-28374","description":"Storage Spaces Controller Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:28:05","cvss":7.8,"cvss_version":"3.1","epss":0.0044,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41345","https://www.zerodayinitiative.com/advisories/ZDI-21-1154/"],"products":["Windows 10 Version 1507","Windows 8.1","Windows Server 2022","Windows 10 Version 20H2","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012","Windows 10 Version 1607","Windows 10 Version 2004","Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows Server version 20H2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2019","Windows Server version 2004","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41347","summary":"Windows AppX Deployment Service Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00203,"ranking_epss":0.42337,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41347","https://www.zerodayinitiative.com/advisories/ZDI-21-1161/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41347","https://www.zerodayinitiative.com/advisories/ZDI-21-1161/"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:13","euvd":{"id":"EUVD-2021-28376","description":"Windows AppX Deployment Service Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:28:08","cvss":7.8,"cvss_version":"3.1","epss":0.002,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41347","https://www.zerodayinitiative.com/advisories/ZDI-21-1161/"],"products":["Windows Server 2022","Windows Server version 2004","Windows Server 2019","Windows 10 Version 1809","Windows 10 Version 1909","Windows 11 version 21H2","Windows 10 Version 20H2","Windows Server 2016","Windows 10 Version 21H1","Windows 10 Version 1607","Windows 10 Version 1507","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 2004","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40488","summary":"Storage Spaces Controller Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00342,"ranking_epss":0.57252,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40488","https://www.zerodayinitiative.com/advisories/ZDI-21-1153/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40488","https://www.zerodayinitiative.com/advisories/ZDI-21-1153/"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:12","euvd":{"id":"EUVD-2021-27665","description":"Storage Spaces Controller Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:27:40","cvss":7.8,"cvss_version":"3.1","epss":0.0034,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40488","https://www.zerodayinitiative.com/advisories/ZDI-21-1153/"],"products":["Windows 10 Version 2004","Windows Server 2012","Windows Server version 20H2","Windows Server version 2004","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows 10 Version 1909","Windows Server 2019","Windows 10 Version 1607","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 8.1","Windows 10 Version 1507","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2","Windows Server 2016","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40489","summary":"Storage Spaces Controller Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00297,"ranking_epss":0.53435,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40489","https://www.zerodayinitiative.com/advisories/ZDI-21-1156/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40489","https://www.zerodayinitiative.com/advisories/ZDI-21-1156/"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:12","euvd":{"id":"EUVD-2021-27666","description":"Storage Spaces Controller Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:27:42","cvss":7.8,"cvss_version":"3.1","epss":0.003,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40489","https://www.zerodayinitiative.com/advisories/ZDI-21-1156/"],"products":["Windows Server 2019","Windows Server 2008  Service Pack 2","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012","Windows 11 version 21H2","Windows 8.1","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2022","Windows 7","Windows 10 Version 21H1","Windows Server 2008 Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1507","Windows 10 Version 1607","Windows 10 Version 1909","Windows 10 Version 1809","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 2004","Windows Server 2008 R2 Service Pack 1","Windows Server version 2004"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41332","summary":"Windows Print Spooler Information Disclosure Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4,"cvss_v3":6.5,"cvss_v4":null,"epss":0.213,"ranking_epss":0.95815,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41332","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41332"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:12","euvd":{"id":"EUVD-2021-28361","description":"Windows Print Spooler Information Disclosure Vulnerability","published_time":"2021-10-13T00:27:46","cvss":6.5,"cvss_version":"3.1","epss":0.213,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41332"],"products":["Windows 10 Version 1909","Windows Server version 20H2","Windows Server 2008  Service Pack 2","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 1607","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows 11 version 21H2","Windows Server 2016 (Server Core installation)","Windows Server 2016","Windows Server 2012","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2019","Windows 10 Version 20H2","Windows Server version 2004","Windows 8.1","Windows 7","Windows 10 Version 2004","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41334","summary":"Windows Desktop Bridge Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7,"cvss_v4":null,"epss":0.00197,"ranking_epss":0.41565,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41334","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41334"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:12","euvd":{"id":"EUVD-2021-28363","description":"Windows Desktop Bridge Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:27:48","cvss":7,"cvss_version":"3.1","epss":0.002,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41334"],"products":["Windows 10 Version 20H2","Windows Server version 2004","Windows 10 Version 2004","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41336","summary":"Windows Kernel Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00403,"ranking_epss":0.61298,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41336","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41336"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:12","euvd":{"id":"EUVD-2021-28365","description":"Windows Kernel Information Disclosure Vulnerability","published_time":"2021-10-13T00:27:51","cvss":5.5,"cvss_version":"3.1","epss":0.004,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41336"],"products":["Windows Server 2022","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41338","summary":"Windows AppContainer Firewall Rules Security Feature Bypass Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.01201,"ranking_epss":0.79324,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41338","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41338"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:12","euvd":{"id":"EUVD-2021-28367","description":"Windows AppContainer Firewall Rules Security Feature Bypass Vulnerability","published_time":"2021-10-13T00:27:55","cvss":5.5,"cvss_version":"3.1","epss":0.012,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41338"],"products":["Windows 10 Version 1909","Windows Server 2016 (Server Core installation)","Windows Server version 20H2","Windows Server 2022","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1507","Windows 10 Version 21H1","Windows Server version 2004","Windows 10 Version 2004","Windows Server 2016","Windows 10 Version 20H2","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 10 Version 1607"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-41339","summary":"Microsoft DWM Core Library Elevation of Privilege Vulnerability","cvss":4.7,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":4.7,"cvss_v4":null,"epss":0.0021,"ranking_epss":0.43625,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41339","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41339"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:12","euvd":{"id":"EUVD-2021-28368","description":"Microsoft DWM Core Library Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:27:57","cvss":4.7,"cvss_version":"3.1","epss":0.0021,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41339"],"products":["Windows Server version 2004","Windows 10 Version 1909","Windows Server version 20H2","Windows 10 Version 21H1","Windows 10 Version 20H2","Windows 10 Version 2004","Windows Server 2022","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40475","summary":"Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00403,"ranking_epss":0.61298,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40475","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40475"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:11","euvd":{"id":"EUVD-2021-27652","description":"Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability","published_time":"2021-10-13T00:27:20","cvss":5.5,"cvss_version":"3.1","epss":0.004,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40475"],"products":["Windows 11 version 21H2","Windows 10 Version 2004","Windows 10 Version 1909","Windows 10 Version 20H2","Windows Server version 2004","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2022","Windows 10 Version 1809","Windows Server version 20H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40476","summary":"Windows AppContainer Elevation Of Privilege Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.5,"cvss_v4":null,"epss":0.00441,"ranking_epss":0.63656,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["http://packetstormsecurity.com/files/164942/Microsoft-Windows-WSAQuerySocketSecurity-AppContainer-Privilege-Escalation.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40476","http://packetstormsecurity.com/files/164942/Microsoft-Windows-WSAQuerySocketSecurity-AppContainer-Privilege-Escalation.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40476"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:11","euvd":{"id":"EUVD-2021-27653","description":"Windows AppContainer Elevation Of Privilege Vulnerability","published_time":"2021-10-13T00:27:21","cvss":7.5,"cvss_version":"3.1","epss":0.0044,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40476","http://packetstormsecurity.com/files/164942/Microsoft-Windows-WSAQuerySocketSecurity-AppContainer-Privilege-Escalation.html"],"products":["Windows 10 Version 1507","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server version 20H2","Windows Server 2012 R2","Windows 10 Version 1809","Windows Server version 2004","Windows Server 2012 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2016","Windows 10 Version 1909","Windows 10 Version 2004","Windows Server 2019 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2019","Windows 8.1","Windows Server 2022","Windows Server 2012","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40477","summary":"Windows Event Tracing Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00289,"ranking_epss":0.52748,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40477","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40477"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:11","euvd":{"id":"EUVD-2021-27654","description":"Windows Event Tracing Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:27:23","cvss":7.8,"cvss_version":"3.1","epss":0.0029,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40477"],"products":["Windows Server 2019","Windows 10 Version 1607","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows Server 2016","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 2004","Windows 10 Version 20H2","Windows Server version 2004","Windows Server 2012","Windows Server 2022","Windows 11 version 21H2","Windows 8.1","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40478","summary":"Storage Spaces Controller Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":7.2,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00342,"ranking_epss":0.57252,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40478","https://www.zerodayinitiative.com/advisories/ZDI-21-1155/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40478","https://www.zerodayinitiative.com/advisories/ZDI-21-1155/"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:11","euvd":{"id":"EUVD-2021-27655","description":"Storage Spaces Controller Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:27:25","cvss":7.8,"cvss_version":"3.1","epss":0.0034,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40478","https://www.zerodayinitiative.com/advisories/ZDI-21-1155/"],"products":["Windows 11 version 21H2","Windows 10 Version 1507","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012","Windows 8.1","Windows 10 Version 21H1","Windows Server 2022","Windows Server 2019 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 1909","Windows 10 Version 1607","Windows Server version 2004","Windows 10 Version 2004","Windows Server 2019","Windows Server 2016 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40461","summary":"Windows Hyper-V Remote Code Execution Vulnerability","cvss":8,"cvss_version":3,"cvss_v2":5.2,"cvss_v3":8,"cvss_v4":null,"epss":0.00558,"ranking_epss":0.68667,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40461","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40461"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:10","euvd":{"id":"EUVD-2021-27638","description":"Windows Hyper-V Remote Code Execution Vulnerability","published_time":"2021-10-13T00:26:58","cvss":8,"cvss_version":"3.1","epss":0.0056,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40461"],"products":["Windows 10 Version 21H1","Windows Server version 2004","Windows 11 version 21H2","Windows Server version 20H2","Windows 10 Version 1809","Windows Server 2022","Windows 10 Version 1909","Windows Server 2019","Windows Server 2019 (Server Core installation)","Windows 10 Version 2004"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40462","summary":"Windows Media Foundation Dolby Digital Atmos Decoders Remote Code Execution Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":6.8,"cvss_v3":7.8,"cvss_v4":null,"epss":0.04098,"ranking_epss":0.88841,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40462","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40462"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:10","euvd":{"id":"EUVD-2021-27639","description":"Windows Media Foundation Dolby Digital Atmos Decoders Remote Code Execution Vulnerability","published_time":"2021-10-13T00:27:00","cvss":7.8,"cvss_version":"3.1","epss":0.041,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40462"],"products":["Windows Server version 2004","Windows 10 Version 1809","Windows Server 2019","Windows 10 Version 1909","Windows 10 Version 20H2","Windows Server 2022","Windows 10 Version 2004","Windows Server version 20H2","Windows 10 Version 21H1","Windows 11 version 21H2","Windows Server 2019 (Server Core installation)"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40464","summary":"Windows Nearby Sharing Elevation of Privilege Vulnerability","cvss":8,"cvss_version":3,"cvss_v2":5.2,"cvss_v3":8,"cvss_v4":null,"epss":0.00578,"ranking_epss":0.69319,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40464","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40464"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:10","euvd":{"id":"EUVD-2021-27641","description":"Windows Nearby Sharing Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:27:03","cvss":8,"cvss_version":"3.1","epss":0.0058,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40464"],"products":["Windows 10 Version 2004","Windows Server version 20H2","Windows Server version 2004","Windows 10 Version 1909","Windows 10 Version 21H1","Windows Server 2019 (Server Core installation)","Windows Server 2019","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 20H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40466","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00312,"ranking_epss":0.5481,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40466","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40466"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:10","euvd":{"id":"EUVD-2021-27643","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:27:06","cvss":7.8,"cvss_version":"3.1","epss":0.0031,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40466"],"products":["Windows 10 Version 2004","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2022","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 20H2","Windows Server 2012","Windows Server 2008 Service Pack 2","Windows 7","Windows 8.1","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows Server 2019","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 7 Service Pack 1","Windows 11 version 21H2","Windows 10 Version 1909","Windows Server 2012 (Server Core installation)","Windows 10 Version 1809","Windows 10 Version 21H1","Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows Server version 2004"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40467","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00414,"ranking_epss":0.61989,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40467","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40467"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:10","euvd":{"id":"EUVD-2021-27644","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:27:08","cvss":7.8,"cvss_version":"3.1","epss":0.0041,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40467"],"products":["Windows 8.1","Windows 10 Version 1607","Windows Server 2022","Windows 10 Version 20H2","Windows 7","Windows Server 2008 Service Pack 2","Windows 11 version 21H2","Windows Server 2012","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows Server version 2004","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Windows Server 2012 R2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2016","Windows 10 Version 1507","Windows 10 Version 1909","Windows Server 2012 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server version 20H2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 2004","Windows 10 Version 21H1","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40468","summary":"Windows Bind Filter Driver Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00488,"ranking_epss":0.65928,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40468","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40468"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:10","euvd":{"id":"EUVD-2021-27645","description":"Windows Bind Filter Driver Information Disclosure Vulnerability","published_time":"2021-10-13T00:27:09","cvss":5.5,"cvss_version":"3.1","epss":0.0049,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40468"],"products":["Windows 10 Version 20H2","Windows Server version 2004","Windows Server version 20H2","Windows 10 Version 2004","Windows 11 version 21H2","Windows 10 Version 21H1","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40470","summary":"DirectX Graphics Kernel Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00332,"ranking_epss":0.56467,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40470","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40470"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:10","euvd":{"id":"EUVD-2021-27647","description":"DirectX Graphics Kernel Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:27:12","cvss":7.8,"cvss_version":"3.1","epss":0.0033,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40470"],"products":["Windows Server 2019 (Server Core installation)","Windows 10 Version 1809","Windows Server version 20H2","Windows Server version 2004","Windows 10 Version 2004","Windows Server 2022","Windows Server 2016","Windows 10 Version 21H1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 10 Version 1909","Windows 10 Version 1507","Windows 11 version 21H2","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-26441","summary":"Storage Spaces Controller Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00231,"ranking_epss":0.46084,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26441","https://www.zerodayinitiative.com/advisories/ZDI-21-1157/","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26441","https://www.zerodayinitiative.com/advisories/ZDI-21-1157/"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-13246","description":"Storage Spaces Controller Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:26:33","cvss":7.8,"cvss_version":"3.1","epss":0.0023,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26441","https://www.zerodayinitiative.com/advisories/ZDI-21-1157/"],"products":["Windows Server 2012","Windows 10 Version 2004","Windows Server 2016","Windows Server 2012 R2 (Server Core installation)","Windows Server version 2004","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2019","Windows Server 2012 R2","Windows 10 Version 1809","Windows 10 Version 1909","Windows Server version 20H2","Windows Server 2022","Windows 10 Version 1507","Windows 10 Version 1607","Windows 10 Version 20H2","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-26442","summary":"Windows HTTP.sys Elevation of Privilege Vulnerability","cvss":7,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7,"cvss_v4":null,"epss":0.00253,"ranking_epss":0.48858,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26442","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26442"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-13247","description":"Windows HTTP.sys Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:26:35","cvss":7,"cvss_version":"3.1","epss":0.0025,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26442"],"products":["Windows Server 2012","Windows 10 Version 20H2","Windows Server 2012 R2 (Server Core installation)","Windows Server version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1607","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server 2016","Windows 10 Version 1507","Windows 8.1","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows 10 Version 21H1","Windows Server 2019","Windows Server version 2004","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows Server 2022","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows Server 2012 R2","Windows 7 Service Pack 1","Windows 10 Version 1909","Windows 10 Version 2004"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-36953","summary":"Windows TCP/IP Denial of Service Vulnerability","cvss":7.5,"cvss_version":3,"cvss_v2":5,"cvss_v3":7.5,"cvss_v4":null,"epss":0.12101,"ranking_epss":0.93961,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36953","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36953"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-23529","description":"Windows TCP/IP Denial of Service Vulnerability","published_time":"2021-10-13T00:26:38","cvss":7.5,"cvss_version":"3.1","epss":0.121,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36953"],"products":["Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2012 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2012","Windows Server version 20H2","Windows 10 Version 1507","Windows Server 2008  Service Pack 2","Windows 10 Version 1909","Windows 10 Version 21H1","Windows 8.1","Windows Server 2022","Windows Server version 2004","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows 10 Version 20H2","Windows 11 version 21H2","Windows Server 2008 Service Pack 2","Windows 10 Version 2004","Windows 7","Windows 10 Version 1809","Windows Server 2012 R2","Windows Server 2016","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-36970","summary":"Windows Print Spooler Spoofing Vulnerability","cvss":8.8,"cvss_version":3,"cvss_v2":4.3,"cvss_v3":8.8,"cvss_v4":null,"epss":0.14902,"ranking_epss":0.94696,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36970","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36970"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-23546","description":"Windows Print Spooler Spoofing Vulnerability","published_time":"2021-10-13T00:26:40","cvss":8.8,"cvss_version":"3.1","epss":0.149,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36970"],"products":["Windows 10 Version 1607","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows Server 2019 (Server Core installation)","Windows 10 Version 1507","Windows Server 2022","Windows Server 2016","Windows Server version 2004","Windows Server 2012","Windows 10 Version 2004","Windows Server 2016 (Server Core installation)","Windows Server 2008  Service Pack 2","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1909","Windows Server 2012 R2","Windows 7","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows 10 Version 21H1","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows 10 Version 20H2","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 11 version 21H2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-38662","summary":"Windows Fast FAT File System Driver Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":4.9,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00578,"ranking_epss":0.6931,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38662","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38662"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-25101","description":"Windows Fast FAT File System Driver Information Disclosure Vulnerability","published_time":"2021-10-13T00:26:41","cvss":5.5,"cvss_version":"3.1","epss":0.0058,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38662"],"products":["Windows 10 Version 1809","Windows 10 Version 21H1","Windows Server 2008  Service Pack 2","Windows 7","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows 8.1","Windows Server 2019","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 1909","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows 10 Version 2004","Windows 10 Version 1507","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 10 Version 20H2","Windows 10 Version 1607","Windows Server 2022","Windows 11 version 21H2","Windows Server 2012","Windows Server version 2004","Windows Server 2008 R2 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-38663","summary":"Windows exFAT File System Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00422,"ranking_epss":0.62491,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38663","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38663"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-25102","description":"Windows exFAT File System Information Disclosure Vulnerability","published_time":"2021-10-13T00:26:43","cvss":5.5,"cvss_version":"3.1","epss":0.0042,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38663"],"products":["Windows Server 2008 R2 Service Pack 1","Windows Server version 20H2","Windows Server 2008  Service Pack 2","Windows Server 2012","Windows 10 Version 2004","Windows 7","Windows 10 Version 1507","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 1909","Windows Server 2016","Windows Server 2022","Windows 10 Version 21H1","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 8.1","Windows 10 Version 20H2","Windows 11 version 21H2","Windows 10 Version 1809","Windows 7 Service Pack 1","Windows Server 2012 R2","Windows 10 Version 1607","Windows Server 2019 (Server Core installation)","Windows Server 2008 Service Pack 2","Windows Server version 2004","Windows Server 2019"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-38672","summary":"Windows Hyper-V Remote Code Execution Vulnerability","cvss":8,"cvss_version":3,"cvss_v2":5.2,"cvss_v3":8,"cvss_v4":null,"epss":0.00479,"ranking_epss":0.65495,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38672","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38672"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-25111","description":"Windows Hyper-V Remote Code Execution Vulnerability","published_time":"2021-10-13T00:26:44","cvss":8,"cvss_version":"3.1","epss":0.0048,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38672"],"products":["Windows 11 version 21H2","Windows Server 2022"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40443","summary":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.00312,"ranking_epss":0.5481,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40443","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40443"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-27620","description":"Windows Common Log File System Driver Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:26:46","cvss":7.8,"cvss_version":"3.1","epss":0.0031,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40443"],"products":["Windows Server version 2004","Windows Server 2008 Service Pack 2","Windows 10 Version 1909","Windows 7 Service Pack 1","Windows Server 2008  Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows Server 2012 R2","Windows 10 Version 21H1","Windows 8.1","Windows 10 Version 1809","Windows Server 2019 (Server Core installation)","Windows 7","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows 10 Version 2004","Windows Server 2008 R2 Service Pack 1","Windows 10 Version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019","Windows 10 Version 1507","Windows Server 2022","Windows Server 2012","Windows 11 version 21H2","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40449","summary":"Win32k Elevation of Privilege Vulnerability","cvss":7.8,"cvss_version":3,"cvss_v2":4.6,"cvss_v3":7.8,"cvss_v4":null,"epss":0.91507,"ranking_epss":0.99686,"kev":true,"propose_action":"Unspecified vulnerability allows for an authenticated user to escalate privileges.","ransomware_campaign":"Known","references":["http://packetstormsecurity.com/files/164926/Win32k-NtGdiResetDC-Use-After-Free-Local-Privilege-Escalation.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40449","http://packetstormsecurity.com/files/164926/Win32k-NtGdiResetDC-Use-After-Free-Local-Privilege-Escalation.html","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40449","https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-40449"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-27626","description":"Win32k Elevation of Privilege Vulnerability","published_time":"2021-10-13T00:26:47","cvss":7.8,"cvss_version":"3.1","epss":0.9151,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40449","http://packetstormsecurity.com/files/164926/Win32k-NtGdiResetDC-Use-After-Free-Local-Privilege-Escalation.html"],"products":["Windows 10 Version 20H2","Windows Server 2008 Service Pack 2","Windows 11 version 21H2","Windows 10 Version 1809","Windows 10 Version 1507","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 8.1","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2 (Server Core installation)","Windows 7 Service Pack 1","Windows Server 2019 (Server Core installation)","Windows 10 Version 21H1","Windows Server 2012 R2","Windows Server version 2004","Windows Server 2008  Service Pack 2","Windows Server 2016 (Server Core installation)","Windows 10 Version 1607","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows Server 2022","Windows 7","Windows Server version 20H2","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2012","Windows 10 Version 1909","Windows 10 Version 2004","Windows Server 2016"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40454","summary":"Rich Text Edit Control Information Disclosure Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00113,"ranking_epss":0.29548,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40454","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40454"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-27631","description":"Rich Text Edit Control Information Disclosure Vulnerability","published_time":"2021-10-13T00:26:50","cvss":5.5,"cvss_version":"3.1","epss":0.0011,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40454"],"products":["Windows 8.1","Windows Server 2016 (Server Core installation)","Windows 10 Version 1809","Microsoft Office 2016","Windows Server 2019 (Server Core installation)","Windows Server version 2004","Microsoft Office LTSC for Mac 2021","Windows 10 Version 1607","Windows 10 Version 1909","Microsoft Office LTSC 2021","Windows Server 2016","Windows 11 version 21H2","Windows Server 2019","Microsoft 365 Apps for Enterprise","Microsoft Office 2013 Service Pack 1","Windows Server 2022","Microsoft Office 2019","Microsoft Office 2019 for Mac","Windows Server 2012 (Server Core installation)","Windows Server version 20H2","Windows 10 Version 1507","Windows Server 2012","Windows 10 Version 20H2","Windows 10 Version 21H1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 2004","Windows Server 2012 R2"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40455","summary":"Windows Installer Spoofing Vulnerability","cvss":5.5,"cvss_version":3,"cvss_v2":2.1,"cvss_v3":5.5,"cvss_v4":null,"epss":0.00593,"ranking_epss":0.69748,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40455","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40455"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-27632","description":"Windows Installer Spoofing Vulnerability","published_time":"2021-10-13T00:26:52","cvss":5.5,"cvss_version":"3.1","epss":0.0059,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40455"],"products":["Windows 7","Windows 7 Service Pack 1","Windows 10 Version 1607","Windows Server 2019","Windows 10 Version 1507","Windows 10 Version 1809","Windows Server 2008 Service Pack 2","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 2004","Windows Server 2008  Service Pack 2","Windows Server 2022","Windows 11 version 21H2","Windows Server 2012","Windows Server 2008 Service Pack 2 (Server Core installation)","Windows Server 2016 (Server Core installation)","Windows Server 2012 (Server Core installation)","Windows Server 2012 R2","Windows Server version 2004","Windows 10 Version 21H1","Windows 10 Version 1909","Windows Server 2016","Windows Server 2019 (Server Core installation)","Windows Server 2008 R2 Service Pack 1","Windows Server 2012 R2 (Server Core installation)","Windows 10 Version 20H2","Windows Server version 20H2","Windows 8.1"],"vendors":["Microsoft"]}},{"cve_id":"CVE-2021-40460","summary":"Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability","cvss":6.5,"cvss_version":3,"cvss_v2":4,"cvss_v3":6.5,"cvss_v4":null,"epss":0.01755,"ranking_epss":0.82992,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40460","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40460"],"vendor":null,"product":null,"version":null,"published_time":"2021-10-13T01:15:09","euvd":{"id":"EUVD-2021-27637","description":"Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability","published_time":"2021-10-13T00:26:57","cvss":6.5,"cvss_version":"3.1","epss":0.0176,"assigner":"microsoft","references":["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40460"],"products":["Windows Server 2012 R2","Windows 10 Version 1809","Windows Server 2008 R2 Service Pack 1 (Server Core installation)","Windows 10 Version 2004","Windows Server version 2004","Windows Server 2016","Windows 10 Version 1507","Windows 10 Version 21H1","Windows Server version 20H2","Windows Server 2016 (Server Core installation)","Windows 11 version 21H2","Windows 7 Service Pack 1","Windows Server 2019","Windows Server 2008 R2 Service Pack 1","Windows 7","Windows Server 2012 (Server Core installation)","Windows Server 2022","Windows 10 Version 1909","Windows 10 Version 20H2","Windows 8.1","Windows Server 2012","Windows Server 2012 R2 (Server Core installation)","Windows Server 2019 (Server Core installation)","Windows 10 Version 1607"],"vendors":["Microsoft"]}}]}