Lucene search

K
nvd[email protected]NVD:CVE-2022-35766
HistoryAug 09, 2022 - 8:15 p.m.

CVE-2022-35766

2022-08-0920:15:12
web.nvd.nist.gov
1
windows
sstp
remote code execution
cve-2022-35766

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.004

Percentile

74.3%

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

Affected configurations

NVD
Node
microsoftwindows_10Match20h2arm64
OR
microsoftwindows_10Match20h2x64
OR
microsoftwindows_10Match20h2x86
OR
microsoftwindows_10Match21h1arm64
OR
microsoftwindows_10Match21h1x64
OR
microsoftwindows_10Match21h1x86
OR
microsoftwindows_10Match21h2arm64
OR
microsoftwindows_10Match21h2x64
OR
microsoftwindows_10Match21h2x86
OR
microsoftwindows_10Match1809arm64
OR
microsoftwindows_10Match1809x64
OR
microsoftwindows_10Match1809x86
OR
microsoftwindows_11Match-arm64
OR
microsoftwindows_11Match-x64
OR
microsoftwindows_server_2016Match20h2
OR
microsoftwindows_server_2019Match-
OR
microsoftwindows_server_2022Match-

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.004

Percentile

74.3%