Lucene search
MicrosoftMS:CVE-2022-24530HistoryApr 12, 2022 - 7:00 a.m.
Windows Installer Elevation of Privilege Vulnerability
2022-04-1207:00:00
Microsoft
msrc.microsoft.com
29
windows
installer
elevation
privilege
vulnerability
microsoft
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.2
Confidence
High
EPSS
0
Percentile
9.5%
Affected configurations
Node
microsoftwindows_server_2012Range<6.3.9600.20337r2
ORmicrosoftwindows_server_2012Range<6.3.9600.20337r2
ORmicrosoftwindows_server_2012Range<6.3.9600.20337r2
ORmicrosoftwindows_server_2012Range<6.3.9600.20337r2
ORmicrosoftwindows_server_2012Range<6.2.9200.23679
ORmicrosoftwindows_server_2012Range<6.2.9200.23679
ORmicrosoftwindows_server_2012Range<6.2.9200.23679
ORmicrosoftwindows_server_2012Range<6.2.9200.23679
ORmicrosoftwindows_server_2008Range<6.1.7601.25924r2
ORmicrosoftwindows_server_2008Range<6.1.7601.25924r2
ORmicrosoftwindows_server_2008Range<6.1.7601.25924r2
ORmicrosoftwindows_server_2008Range<6.1.7601.25924r2
ORmicrosoftwindows_server_2008Range<6.0.6003.21446sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.21446sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.21446sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.21446sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.21446sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.21446sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.21446sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.21446sp2
ORmicrosoftwindows_rt_8.1Range<6.3.9600.20337
ORmicrosoftwindows_8.1Range<6.3.9600.20337
ORmicrosoftwindows_8.1Range<6.3.9600.20337
ORmicrosoftwindows_8.1Range<6.3.9600.20337
ORmicrosoftwindows_8.1Range<6.3.9600.20337
ORmicrosoftwindows_7Range<6.1.7601.25924
ORmicrosoftwindows_7Range<6.1.7601.25924
ORmicrosoftwindows_7Range<6.1.7601.25924
ORmicrosoftwindows_7Range<6.1.7601.25924
ORmicrosoftwindows_server_2016Range<10.0.14393.5066
ORmicrosoftwindows_server_2016Range<10.0.14393.5066
ORmicrosoftwindows_10_1607Range<10.0.14393.5066
ORmicrosoftwindows_10_1607Range<10.0.14393.5066
ORmicrosoftwindows_10_1507Range<10.0.10240.19265
ORmicrosoftwindows_10_1507Range<10.0.10240.19265
ORmicrosoftwindows_10_21h2Range<10.0.19044.1645
ORmicrosoftwindows_10_21h2Range<10.0.19044.1645
ORmicrosoftwindows_10_21h2Range<10.0.19044.1645
ORmicrosoftwindows_11_21h2Range<10.0.22000.613
ORmicrosoftwindows_11_21h2Range<10.0.22000.613
ORmicrosoftwindows_server_20h2Range<10.0.19042.1645
ORmicrosoftwindows_10_20h2Range<10.0.19042.1645
ORmicrosoftwindows_10_20h2Range<10.0.19042.1645
ORmicrosoftwindows_server_2022Range<10.0.20348.643
ORmicrosoftwindows_server_2022Range<10.0.20348.643
ORmicrosoftwindows_10_21h1Range<10.0.19043.1645
ORmicrosoftwindows_10_21h1Range<10.0.19043.1645
ORmicrosoftwindows_10_21h1Range<10.0.19043.1645
ORmicrosoftwindows_10_1809Range<10.0.18363.2212
ORmicrosoftwindows_10_1909Range<10.0.18363.2212
ORmicrosoftwindows_10_1909Range<10.0.18363.2212
ORmicrosoftwindows_server_2019Range<10.0.17763.2803
ORmicrosoftwindows_server_2019Range<10.0.17763.2803
ORmicrosoftwindows_10_1809Range<10.0.17763.2803
ORmicrosoftwindows_10_1809Range<10.0.17763.2803
ORmicrosoftwindows_10_1809Range<10.0.17763.2803
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_server_2012 | * | cpe:2.3:o:microsoft:windows_server_2012:*:r2:*:*:*:*:*:* |
| microsoft | windows_server_2012 | * | cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2008 | * | cpe:2.3:o:microsoft:windows_server_2008:*:r2:*:*:*:*:*:* |
| microsoft | windows_server_2008 | * | cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:* |
| microsoft | windows_rt_8.1 | * | cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:* |
| microsoft | windows_8.1 | * | cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:* |
| microsoft | windows_7 | * | cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2016 | * | cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1507 | * | cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2022-24530
2022-04-15 19:15:11
prion
prion
Privilege escalation
2022-04-15 19:15:00
nvd
nvd
CVE-2022-24530
2022-04-15 19:15:11
cvelist
cvelist
CVE-2022-24530 Windows Installer Elevation of Privilege Vulnerability
2022-04-15 19:03:47
mskb
mskb
April 12, 2022âKB5012658 (Monthly Rollup)
2022-04-12 08:00:00
April 12, 2022âKB5012632 (Security-only update)
2022-04-12 08:00:00
April 12, 2022âKB5012649 (Security-only update)
2022-04-12 08:00:00
nessus
nessus
KB5012632: Windows Server 2008 Security Update (April 2022)
2022-04-12 00:00:00
KB5012653: Windows 10 version 1507 LTS Security Update (April 2022)
2022-04-12 00:00:00
KB5012666: Windows Server 2012 Security Update (April 2022)
2022-04-12 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5012653)
2022-04-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5012626)
2022-04-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5012591)
2022-04-13 00:00:00
kaspersky
kaspersky
KLA12509 Multiple vulnerabilities in Microsoft Products (ESU)
2022-04-12 00:00:00
KLA12502 Multiple vulnerabilities in Microsoft Windows
2022-04-12 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - April 2022
2022-04-12 18:48:11
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.2
Confidence
High
EPSS
0
Percentile
9.5%
Related for MS:CVE-2022-24530