Lucene search
HistoryDec 13, 2022 - 7:15 p.m.
CVE-2022-44676
windows
sstp
remote code execution
vulnerability
cve-2022-44676
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.005
Percentile
76.1%
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
Affected configurations
Node
microsoftwindows_10Match-
ORmicrosoftwindows_10Match20h2
ORmicrosoftwindows_10Match21h1
ORmicrosoftwindows_10Match21h2
ORmicrosoftwindows_10Match22h2
ORmicrosoftwindows_10Match1607
ORmicrosoftwindows_10Match1809
ORmicrosoftwindows_11Match-x64
ORmicrosoftwindows_11Match22h2x64
ORmicrosoftwindows_7Match-sp1
ORmicrosoftwindows_8.1Match-
ORmicrosoftwindows_rt_8.1Match-
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2sp1x64
ORmicrosoftwindows_server_2012Match-
ORmicrosoftwindows_server_2012Matchr2
ORmicrosoftwindows_server_2016Match-
ORmicrosoftwindows_server_2019Match-
ORmicrosoftwindows_server_2022Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_10 | - | cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:* |
| microsoft | windows_10 | 20h2 | cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:* |
| microsoft | windows_10 | 21h1 | cpe:2.3:o:microsoft:windows_10:21h1:*:*:*:*:*:*:* |
| microsoft | windows_10 | 21h2 | cpe:2.3:o:microsoft:windows_10:21h2:*:*:*:*:*:*:* |
| microsoft | windows_10 | 22h2 | cpe:2.3:o:microsoft:windows_10:22h2:*:*:*:*:*:*:* |
| microsoft | windows_10 | 1607 | cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:* |
| microsoft | windows_10 | 1809 | cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:* |
| microsoft | windows_11 | - | cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:x64:* |
| microsoft | windows_11 | 22h2 | cpe:2.3:o:microsoft:windows_11:22h2:*:*:*:*:*:x64:* |
| microsoft | windows_7 | - | cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:* |
Related
mscve
mscve
prion
prion
Remote code execution
2022-12-13 19:15:00
cve
cve
CVE-2022-44676
2022-12-13 19:15:13
cvelist
cvelist
malwarebytes
malwarebytes
Update now! Two zero-days fixed in 2022's last patch Tuesday
2022-12-14 15:00:00
avleonov
avleonov
talosblog
talosblog
nessus
nessus
KB5021293: Windows Server 2008 Security Update (December 2022)
2022-12-13 00:00:00
KB5021288: Windows Server 2008 R2 Security Update (December 2022)
2022-12-13 00:00:00
KB5021303: Windows Server 2012 Security Update (December 2022)
2022-12-13 00:00:00
mskb
mskb
December 13, 2022โKB5021293 (Security-only update)
2022-12-13 08:00:00
December 13, 2022โKB5021289 (Monthly Rollup)
2022-12-13 08:00:00
December 13, 2022โKB5021291 (Monthly Rollup)
2022-12-13 08:00:00
qualysblog
qualysblog
The Decemberย 2022 Patch Tuesday Security Update Review
2022-12-13 23:17:17
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5021291)
2022-12-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5021235)
2022-12-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5021243)
2022-12-14 00:00:00
kaspersky
kaspersky
KLA20118 Multiple vulnerabilities in Microsoft Products (ESU)
2022-12-13 00:00:00
KLA20117 Multiple vulnerabilities in Microsoft Windows
2022-12-13 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - December 2022
2022-12-13 21:24:06
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.005
Percentile
76.1%
Related for NVD:CVE-2022-44676