Lucene search
MicrosoftCVE-2022-35757HistoryMay 31, 2023 - 7:15 p.m.
CVE-2022-35757
2023-05-3119:15:17
microsoft
web.nvd.nist.gov
49
cve-2022-35757
windows
cloud files
mini filter driver
elevation of privilege
vulnerability
nvd
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
7
Confidence
High
EPSS
0.001
Percentile
33.0%
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Affected configurations
Node
microsoftwindows_10_1809Range<10.0.17763.3287arm64
ORmicrosoftwindows_10_1809Range<10.0.17763.3287x64
ORmicrosoftwindows_10_1809Range<10.0.17763.3287x86
ORmicrosoftwindows_10_20h2Range<10.0.19042.1889arm64
ORmicrosoftwindows_10_20h2Range<10.0.19042.1889x64
ORmicrosoftwindows_10_20h2Range<10.0.19042.1889x86
ORmicrosoftwindows_10_21h1Range<10.0.19043.1889arm64
ORmicrosoftwindows_10_21h1Range<10.0.19043.1889x64
ORmicrosoftwindows_10_21h2Range<10.0.19043.1889x64
ORmicrosoftwindows_10_21h2Range<10.0.19043.1889x86
ORmicrosoftwindows_11_21h2Range<10.0.22000.856arm64
ORmicrosoftwindows_11_21h2Range<10.0.22000.856x64
ORmicrosoftwindows_server_2019Match-
ORmicrosoftwindows_server_2022Match-
ORmicrosoftwindows_server_20h2Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:* |
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:* |
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:arm64:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x64:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x86:* |
| microsoft | windows_10_21h1 | * | cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:arm64:* |
| microsoft | windows_10_21h1 | * | cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:x64:* |
| microsoft | windows_10_21h2 | * | cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x64:* |
| microsoft | windows_10_21h2 | * | cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x86:* |
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Windows 10 Version 1809",
"cpes": [
"cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.3287:*:*:*:*:*:x86:*",
"cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.3287:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.3287:*:*:*:*:*:arm64:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems",
"ARM64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.17763.3287",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2022",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.887:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.20348.887",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 10 Version 21H1",
"cpes": [
"cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1889:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1889:*:*:*:*:*:x86:*",
"cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1889:*:*:*:*:*:arm64:*"
],
"platforms": [
"x64-based Systems",
"32-bit Systems",
"ARM64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.19043.1889",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 10 Version 20H2",
"cpes": [
"cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1889:*:*:*:*:*:x86:*",
"cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1889:*:*:*:*:*:arm64:*"
],
"platforms": [
"32-bit Systems",
"ARM64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.19042.1889",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 11 version 21H2",
"cpes": [
"cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.856:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.856:*:*:*:*:*:arm64:*"
],
"platforms": [
"x64-based Systems",
"ARM64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.22000.856",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 10 Version 21H2",
"cpes": [
"cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.1889:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.1889:*:*:*:*:*:x86:*",
"cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.1889:*:*:*:*:*:arm64:*"
],
"platforms": [
"32-bit Systems",
"ARM64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.19044.1889",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server version 20H2",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_20H2:10.0.19042.1889:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.19042.1889",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2019 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.3287:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.17763.3287",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2019",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.3287:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.17763.3287",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2022-35757
2023-05-31 19:15:17
mscve
mscve
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
2022-08-09 07:00:00
prion
prion
Privilege escalation
2023-05-31 19:15:00
cvelist
cvelist
nessus
nessus
KB5016629: Windows 11 Security Update (August 2022)
2022-08-09 00:00:00
KB5016623: Windows 10 version 1809 / Windows Server 2019 Security Update (August 2022)
2022-08-09 00:00:00
KB5016627: Windows Server 2022 Security Update (August 2022)
2022-08-09 00:00:00
mskb
mskb
August 9, 2022âKB5016629 (OS Build 22000.856)
2022-10-11 07:00:00
August 9, 2022âKB5016623 (OS Build 17763.3287)
2022-10-11 07:00:00
August 9, 2022âKB5016627 (OS Build 20348.887)
2022-10-11 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5016623)
2022-08-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5016616)
2022-08-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5016629)
2023-08-08 00:00:00
kaspersky
kaspersky
KLA12602 Multiple vulnerabilities in Microsoft Windows
2022-08-09 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - August 2022
2022-08-09 19:34:51
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
7
Confidence
High
EPSS
0.001
Percentile
33.0%
Related for CVE-2022-35757