9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
9 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C
9.7 High
AI Score
Confidence
High
0.04 Low
EPSS
Percentile
92.1%
Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges, obtain sensitive information, execute arbitrary code, cause denial of service, spoof user interface.
Below is a complete list of vulnerabilities:
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
CVE-2022-21959 high
CVE-2022-21925 high
CVE-2022-21859 high
CVE-2022-21915 high
CVE-2022-21875 critical
CVE-2022-21908 critical
CVE-2022-21834 critical
CVE-2022-21864 high
CVE-2022-21922 critical
CVE-2022-21881 high
CVE-2022-21838 critical
CVE-2022-21867 high
CVE-2022-21901 critical
CVE-2022-21850 critical
CVE-2022-21870 critical
CVE-2022-21913 critical
CVE-2022-21894 warning
CVE-2022-21960 high
CVE-2022-21835 critical
CVE-2022-21903 critical
CVE-2022-21889 critical
CVE-2022-21919 high
CVE-2022-21851 critical
CVE-2022-21920 critical
CVE-2022-21868 high
CVE-2022-21963 high
CVE-2022-21958 high
CVE-2022-21928 high
CVE-2022-21924 high
CVE-2022-21905 critical
CVE-2022-21836 critical
CVE-2022-21900 warning
CVE-2022-21880 critical
CVE-2022-21883 critical
CVE-2022-21833 critical
CVE-2022-21890 critical
CVE-2022-21893 critical
CVE-2022-21904 critical
CVE-2022-21876 high
CVE-2022-21848 critical
CVE-2022-21961 high
CVE-2022-21884 critical
CVE-2022-21897 critical
CVE-2022-21857 critical
CVE-2022-21862 high
CVE-2022-21899 high
CVE-2022-21885 critical
CVE-2022-21895 critical
CVE-2022-21914 critical
CVE-2022-21892 high
CVE-2022-21843 critical
CVE-2022-21916 critical
CVE-2022-21962 high
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.
support.microsoft.com/kb/5009586
support.microsoft.com/kb/5009595
support.microsoft.com/kb/5009601
support.microsoft.com/kb/5009610
support.microsoft.com/kb/5009619
support.microsoft.com/kb/5009621
support.microsoft.com/kb/5009624
support.microsoft.com/kb/5009627
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21833
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21834
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21835
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21836
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21838
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21843
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21848
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21850
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21851
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21857
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21859
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21862
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21864
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21867
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21868
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21870
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21875
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21876
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21880
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21881
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21883
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21884
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21885
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21889
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21890
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21892
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21893
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21894
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21895
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21897
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21899
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21900
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21901
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21903
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21904
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21905
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21908
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21913
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21914
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21915
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21916
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21919
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21920
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21922
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21924
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21925
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21928
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21958
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21959
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21960
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21961
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21962
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21963
statistics.securelist.com/
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Windows-7/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2008/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2012/
threats.kaspersky.com/en/product/Microsoft-Windows-Server/
threats.kaspersky.com/en/product/Microsoft-Windows/
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
9 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C
9.7 High
AI Score
Confidence
High
0.04 Low
EPSS
Percentile
92.1%