CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
91.2%
Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, obtain sensitive information, cause denial of service, execute arbitrary code, bypass security restrictions.
Below is a complete list of vulnerabilities:
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
CVE-2022-38029 high
CVE-2022-34689 critical
CVE-2022-37985 high
CVE-2022-37975 critical
CVE-2022-37996 high
CVE-2022-37965 high
CVE-2022-38042 high
CVE-2022-37984 critical
CVE-2022-37981 warning
CVE-2022-24504 critical
CVE-2022-33634 critical
CVE-2022-37990 critical
CVE-2022-38038 critical
CVE-2022-37991 critical
CVE-2022-37993 critical
CVE-2022-38041 critical
CVE-2022-38027 high
CVE-2022-33645 critical
CVE-2022-38034 critical
CVE-2022-37977 high
CVE-2022-38033 high
CVE-2022-38037 critical
CVE-2022-38028 critical
CVE-2022-38000 critical
CVE-2022-37989 critical
CVE-2022-37978 critical
CVE-2022-41033 critical
CVE-2022-37994 critical
CVE-2022-37999 critical
CVE-2022-38032 high
CVE-2022-38045 critical
CVE-2022-38051 critical
CVE-2022-37976 critical
CVE-2022-38047 critical
CVE-2022-38044 critical
CVE-2022-38040 critical
CVE-2022-37982 critical
CVE-2022-37997 critical
CVE-2022-33635 critical
CVE-2022-22035 critical
CVE-2022-38043 high
CVE-2022-37988 critical
CVE-2022-38026 high
CVE-2022-30198 critical
CVE-2022-38022 warning
CVE-2022-37986 critical
CVE-2022-41081 critical
CVE-2022-37987 critical
CVE-2022-38031 critical
CVE-2022-35770 high
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.
support.microsoft.com/kb/5016622
support.microsoft.com/kb/5016669
support.microsoft.com/kb/5016672
support.microsoft.com/kb/5016676
support.microsoft.com/kb/5016679
support.microsoft.com/kb/5016681
support.microsoft.com/kb/5016683
support.microsoft.com/kb/5016684
support.microsoft.com/kb/5016686
support.microsoft.com/kb/5018446
support.microsoft.com/kb/5018450
support.microsoft.com/kb/5018454
support.microsoft.com/kb/5018457
support.microsoft.com/kb/5018474
support.microsoft.com/kb/5018476
support.microsoft.com/kb/5018478
support.microsoft.com/kb/5018479
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22035
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24504
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30198
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33634
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33635
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33645
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34689
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35770
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37965
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37975
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37976
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37977
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37978
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37981
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37982
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37984
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37985
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37986
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37987
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37988
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37989
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37990
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37991
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37993
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37994
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37996
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37997
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37999
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38000
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38022
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38026
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38027
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38028
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38029
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38031
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38032
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38033
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38034
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38037
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38038
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38040
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38041
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38042
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38043
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38044
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38045
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38047
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38051
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41033
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41081
statistics.securelist.com/
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Windows-7/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2008/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2012/
threats.kaspersky.com/en/product/Microsoft-Windows-Server/
threats.kaspersky.com/en/product/Microsoft-Windows/