Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mscveMicrosoftMS:CVE-2022-34689
HistoryOct 11, 2022 - 7:00 a.m.

Windows CryptoAPI Spoofing Vulnerability

2022-10-1107:00:00
Microsoft
msrc.microsoft.com
65

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

7.7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

53.1%

JSON

Related

hivepro 1
prion 1
cnvd 1
thn 1
cve 1
qualysblog 1
mskb 14
nessus 10
kaspersky 2
rapid7blog 1
hivepro
hivepro
Proof-of-concept released for Windows CryptoAPI vulnerability
2023-02-01 05:51:58
prion
prion
Spoofing
2022-10-11 19:15:00
cnvd
cnvd
Microsoft Windows CryptoAPI has an unspecified vulnerability
2022-10-14 00:00:00
thn
thn
Researchers Release PoC Exploit for Windows CryptoAPI Bug Discovered by NSA
2023-01-26 14:52:00
cve
cve
CVE-2022-34689
2022-10-11 19:15:00
qualysblog
qualysblog
October 2022 Patch Tuesday | Microsoft Releases 84 Vulnerabilities with 13 Critical, plus 12 Microsoft Edge (Chromium-Based); Adobe Releases 4 Advisories, 29 Vulnerabilities with 17 Critical.
2022-10-11 20:00:00
mskb
mskb
August 9, 2022—KB5016686 (Security-only update)
2022-10-11 07:00:00
August 9, 2022—KB5016669 (Monthly Rollup)
2022-10-11 07:00:00
August 9, 2022—KB5016679 (Security-only update)
2022-10-11 07:00:00
nessus
nessus
KB5016686: Windows Server 2008 Security Update (August 2022)
2022-08-09 00:00:00
KB5016679: Windows 7 and Windows Server 2008 R2 Security Update (August 2022)
2022-08-09 00:00:00
KB5016684: Windows Server 2012 Security Update (August 2022)
2022-08-09 00:00:00
kaspersky
kaspersky
KLA20001 Multiple vulnerabilities in Microsoft Products (ESU)
2022-10-11 00:00:00
KLA20000 Multiple vulnerabilities in Microsoft Windows
2022-10-11 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - October 2022
2022-10-11 18:35:28

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

7.7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

53.1%

JSON
Related for MS:CVE-2022-34689
hivepro1prion1cnvd1thn1cve1qualysblog1mskb14nessus10kaspersky2rapid7blog1