7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
4.3 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
69.9%
Windows Print Spooler Elevation of Privilege Vulnerability
Recent assessments:
ccondon-r7 at December 29, 2022 11:52pm UTC reported:
Evidently this is being used for privilege escalation in ransomware attacks when threat actors have initial access to systems through existing Raspberry Robin, FAKEUPDATES, and/or Qakbot infections. Not necessarily surprising given the Windows print spoolerโs popularity with attackers, but the existing intel on Raspberry Robin and Qbot ecosystems is a little light on specific CVE mentions. I was surprised to see the RiskIQ article, especially considering that itโs fairly buried in run-of-the-mill Patch Tuesday roundup drivel in Google search results.
Assessed Attacker Value: 5
Assessed Attacker Value: 5Assessed Attacker Value: 3
packetstormsecurity.com/files/174528/Microsoft-Windows-Privilege-Escalation.html
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41073
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41073
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41073
www.secpod.com/blog/microsoft-november-2022-patch-tuesday-patches-65-vulnerabilities-including-6-zero-days/
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
4.3 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
69.9%