Lucene search
MicrosoftVULNRICHMENT:CVE-2022-30215HistoryJul 12, 2022 - 10:37 p.m.
CVE-2022-30215 Active Directory Federation Services Elevation of Privilege Vulnerability
2022-07-1222:37:42
microsoft
github.com
4
cve-2022-30215
active directory
elevation of privilege
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
AI Score
6.8
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
CNA Affected
[
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.3165:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2019",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.17763.3165",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.3165:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2019 (Server Core installation)",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.17763.3165",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.825:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2022",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.20348.825",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_20H2:10.0.19042.1826:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server version 20H2",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.19042.1826",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5246:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2016",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.14393.5246",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5246:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2016 (Server Core installation)",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.14393.5246",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
}
]Related
cve
cve
CVE-2022-30215
2022-07-12 23:15:11
cvelist
cvelist
prion
prion
Privilege escalation
2022-07-12 23:15:00
nvd
nvd
CVE-2022-30215
2022-07-12 23:15:11
mscve
mscve
Active Directory Federation Services Elevation of Privilege Vulnerability
2022-07-12 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5015811)
2022-07-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5015808)
2022-07-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5015807)
2022-07-13 00:00:00
mskb
mskb
July 12, 2022âKB5015808 (OS Build 14393.5246)
2022-07-12 07:00:00
July 12, 2022âKB5015827 (OS Build 20348.825)
2022-07-12 07:00:00
July 12, 2022âKB5015811 (OS Build 17763.3165)
2022-07-12 07:00:00
nessus
nessus
kaspersky
kaspersky
KLA12580 Multiple vulnerabilities in Microsoft Windows
2022-07-12 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - July 2022
2022-07-12 19:40:15
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
AI Score
6.8
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2022-30215