Lucene search
HistoryMay 31, 2023 - 7:15 p.m.
CVE-2022-35753
cve-2022-35753
windows
secure socket tunneling protocol
remote code execution
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9
Confidence
High
EPSS
0.017
Percentile
87.7%
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
Affected configurations
Node
microsoftwindows_10_1507Range<10.0.10240.19387x64
ORmicrosoftwindows_10_1507Range<10.0.10240.19387x86
ORmicrosoftwindows_10_1607Range<10.0.14393.5291x64
ORmicrosoftwindows_10_1607Range<10.0.14393.5291x86
ORmicrosoftwindows_10_1809Range<10.0.17763.3287arm64
ORmicrosoftwindows_10_1809Range<10.0.17763.3287x64
ORmicrosoftwindows_10_1809Range<10.0.17763.3287x86
ORmicrosoftwindows_10_20h2Range<10.0.19042.1889arm64
ORmicrosoftwindows_10_20h2Range<10.0.19042.1889x64
ORmicrosoftwindows_10_20h2Range<10.0.19042.1889x86
ORmicrosoftwindows_10_21h1Range<10.0.19043.1889arm64
ORmicrosoftwindows_10_21h1Range<10.0.19043.1889x64
ORmicrosoftwindows_10_21h1Range<10.0.19043.1889x86
ORmicrosoftwindows_11_21h2Range<10.0.22000.856arm64
ORmicrosoftwindows_11_21h2Range<10.0.22000.856x64
ORmicrosoftwindows_7Match-sp1
ORmicrosoftwindows_8.1Range<6.3.9600.20520
ORmicrosoftwindows_rt_8.1Range<6.3.9600.20520
ORmicrosoftwindows_server_2008Match-sp2x64
ORmicrosoftwindows_server_2008Match-sp2x86
ORmicrosoftwindows_server_2008Matchr2sp1x64
ORmicrosoftwindows_server_2012Match-
ORmicrosoftwindows_server_2012Matchr2
ORmicrosoftwindows_server_2016Match-
ORmicrosoftwindows_server_2019Match-
ORmicrosoftwindows_server_2022Match-
ORmicrosoftwindows_server_20h2Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_10_1507 | * | cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:* |
| microsoft | windows_10_1507 | * | cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:* |
| microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:* |
| microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:* |
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:* |
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:* |
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:arm64:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x64:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x86:* |
Related
prion
prion
Remote code execution
2023-05-31 19:15:00
cvelist
cvelist
mscve
mscve
cve
cve
CVE-2022-35753
2023-05-31 19:15:16
mskb
mskb
August 9, 2022âKB5016686 (Security-only update)
2022-10-11 07:00:00
August 9, 2022âKB5016669 (Monthly Rollup)
2022-10-11 07:00:00
August 9, 2022âKB5016679 (Security-only update)
2022-10-11 07:00:00
nessus
nessus
KB5016686: Windows Server 2008 Security Update (August 2022)
2022-08-09 00:00:00
KB5016684: Windows Server 2012 Security Update (August 2022)
2022-08-09 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5016676)
2022-08-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5016681)
2022-08-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5016639)
2022-08-10 00:00:00
kaspersky
kaspersky
KLA12603 Multiple vulnerabilities in Microsoft Products (ESU)
2022-08-09 00:00:00
KLA12602 Multiple vulnerabilities in Microsoft Windows
2022-08-09 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - August 2022
2022-08-09 19:34:51
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9
Confidence
High
EPSS
0.017
Percentile
87.7%
Related for NVD:CVE-2022-35753