9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.897 High
EPSS
Percentile
98.8%
Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions, gain privileges, cause denial of service, spoof user interface.
Below is a complete list of vulnerabilities:
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
CVE-2022-29137 critical
CVE-2022-26936 high
CVE-2022-29115 critical
CVE-2022-29127 warning
CVE-2022-22012 critical
CVE-2022-26931 critical
CVE-2022-22013 critical
CVE-2022-22019 critical
CVE-2022-29139 critical
CVE-2022-29129 critical
CVE-2022-29141 critical
CVE-2022-29112 high
CVE-2022-26937 critical
CVE-2022-29103 critical
CVE-2022-22015 high
CVE-2022-29132 critical
CVE-2022-29130 critical
CVE-2022-26926 critical
CVE-2022-23270 critical
CVE-2022-29121 high
CVE-2022-21972 critical
CVE-2022-26925 high
CVE-2022-29105 critical
CVE-2022-22011 high
CVE-2022-26935 high
CVE-2022-29128 critical
CVE-2022-26934 high
CVE-2022-22014 critical
CVE-2022-29104 critical
CVE-2022-29102 high
CVE-2022-29151 high
CVE-2022-29122 high
CVE-2022-29150 high
CVE-2022-29125 high
CVE-2022-29138 high
CVE-2022-26933 high
CVE-2022-29135 high
CVE-2022-29134 high
CVE-2022-26923 critical
CVE-2022-26930 high
CVE-2022-29123 high
CVE-2022-29120 high
CVE-2022-29126 high
CVE-2022-29114 high
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.
support.microsoft.com/kb/5013999
support.microsoft.com/kb/5014001
support.microsoft.com/kb/5014006
support.microsoft.com/kb/5014010
support.microsoft.com/kb/5014011
support.microsoft.com/kb/5014012
support.microsoft.com/kb/5014017
support.microsoft.com/kb/5014018
support.microsoft.com/kb/5025285
support.microsoft.com/kb/5025288
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21972
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22011
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22012
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22013
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22014
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22015
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22019
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23270
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26923
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26925
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26926
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26930
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26931
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26933
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26934
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26935
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26936
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26937
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29102
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29103
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29104
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29105
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29112
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29114
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29115
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29120
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29121
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29122
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29123
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29125
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29126
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29127
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29128
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29129
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29130
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29132
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29134
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29135
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29137
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29138
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29139
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29141
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29150
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29151
statistics.securelist.com/
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Windows-7/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2008/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2012/
threats.kaspersky.com/en/product/Microsoft-Windows-Server/
threats.kaspersky.com/en/product/Microsoft-Windows/
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.897 High
EPSS
Percentile
98.8%