CVE-2022-41033
HIGH
7,8
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
Description
AI Translation Available
Windows COM+ Event System Service Elevation of Privilege Vulnerability
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,0089
Percentile
0,8th
Updated
EPSS Score Trend (Last 90 Days)
843
Access of Resource Using Incompatible Type ('Type Confusion')
IncompleteCommon Consequences
Security Scopes Affected:
Availability
Integrity
Confidentiality
Potential Impacts:
Read Memory
Modify Memory
Execute Unauthorized Code Or Commands
Dos: Crash, Exit, Or Restart
Applicable Platforms
Languages:
C, C++
Operating System
Windows 10 21H1 by Microsoft
Version Range Affected
To
10.0.19043.2130
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2016 by Microsoft
Version Range Affected
To
10.0.14393.5427
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 11 21H2 by Microsoft
Version Range Affected
To
10.0.22000.1098
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1809 by Microsoft
Version Range Affected
To
10.0.17763.3532
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1507 by Microsoft
Version Range Affected
To
10.0.10240.19507
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2008 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2019 by Microsoft
Version Range Affected
To
10.0.17763.3532
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 11 22H2 by Microsoft
Version Range Affected
To
10.0.22621.674
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2012 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 20H2 by Microsoft
Version Range Affected
To
10.0.19042.2130
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2008 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 7 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Rt 8.1 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2022 by Microsoft
Version Range Affected
To
10.0.20348.1129
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2012 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 8.1 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1607 by Microsoft
Version Range Affected
To
10.0.14393.5427
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 21H2 by Microsoft
Version Range Affected
To
10.0.19044.2130
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022…
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-410…
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41033