CVE-2022-21882

🗓️ 11 Jan 2022 20:22:49Reported by microsoftType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 1350 Views

Win32k Elevation of Privilege Vulnerability, CVE-2022-2188

Reporter	Title	Published	Views	Family All 53
0day.today	Win32k ConsoleControl Offset Confusion / Privilege Escalation Exploit	28 Feb 202200:00	–	zdt
GithubExploit	Exploit for Out-of-bounds Write in Microsoft	15 Feb 202216:55	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Write in Microsoft	1 Feb 202217:58	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Write in Microsoft	7 Feb 202203:45	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Write in Microsoft	14 Feb 202221:28	–	githubexploit
ICS	North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs	25 Jul 202412:00	–	ics
ATTACKERKB	CVE-2022-21882	11 Jan 202200:00	–	attackerkb
Information Security Automation	Microsoft Patch Tuesday January 2022	16 Jan 202220:17	–	avleonov
Circl	CVE-2022-21882	28 Jan 202212:07	–	circl
CISA KEV Catalog	Microsoft Win32k Privilege Escalation Vulnerability	4 Feb 202200:00	–	cisa_kev

NVD

Vulners

CNA

Node

microsoft windows_10_1809Range<10.0.17763.2452x64

microsoft windows_10_1809Range<10.0.17763.2452x86

microsoft windows_10_1909Range<10.0.18363.2037

microsoft windows_10_20h2Range<10.0.19042.1466

microsoft windows_10_21h1Range<10.0.19043.1466

microsoft windows_10_21h2Range<10.0.19044.1466

microsoft windows_11_21h2Range<10.0.22000.434

microsoft windows_server_2019Range<10.0.17763.2452

microsoft windows_server_2022Range<10.0.20348.469

microsoft windows_server_20h2Range<10.0.19042.1466

[
  {
    "vendor": "Microsoft",
    "product": "Windows 10 Version 1809",
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.17763.0",
        "lessThan": "10.0.17763.2452",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows 10 Version 1809",
    "platforms": [
      "ARM64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.17763.2452",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows Server 2019",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.17763.0",
        "lessThan": "10.0.17763.2452",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows Server 2019 (Server Core installation)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.17763.0",
        "lessThan": "10.0.17763.2452",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows 10 Version 1909",
    "platforms": [
      "32-bit Systems",
      "x64-based Systems",
      "ARM64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.18363.2037",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows 10 Version 21H1",
    "platforms": [
      "x64-based Systems",
      "ARM64-based Systems",
      "32-bit Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.19043.1466",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows Server 2022",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.20348.0",
        "lessThan": "10.0.20348.469",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows 10 Version 20H2",
    "platforms": [
      "32-bit Systems",
      "ARM64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.19042.1466",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows Server version 20H2",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.19042.1466",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows 11 version 21H2",
    "platforms": [
      "x64-based Systems",
      "ARM64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.22000.434",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows 10 Version 21H2",
    "platforms": [
      "32-bit Systems",
      "ARM64-based Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.19043.0",
        "lessThan": "10.0.19044.1466",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21882
packetstormsecurity	www.packetstormsecurity.com/files/166169/Win32k-ConsoleControl-Offset-Confusion-Privilege-Escalation.html
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21882

30 Oct 2025 19:19Current

7.8High risk

Vulners AI Score7.8

CVSS 27.2

CVSS 3.17 - 7.8

EPSS0.89138

SSVC

win32k elevation of privilege vulnerability cve-2022-21882