Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-26904
HistoryApr 15, 2022 - 7:15 p.m.

CVE-2022-26904

2022-04-1519:15:15
CWE-362
[email protected]
web.nvd.nist.gov
8
windows
user profile service
elevation of privilege
vulnerability

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

47.0%

JSON

Windows User Profile Service Elevation of Privilege Vulnerability

Affected configurations

Nvd
Node
microsoftwindows_10_1507Range<10.0.10240.19265
OR
microsoftwindows_10_1607Range<10.0.14393.5066
OR
microsoftwindows_10_1809Range<10.0.17763.2803
OR
microsoftwindows_10_1909Range<10.0.18363.2212
OR
microsoftwindows_10_20h2Range<10.0.19042.1645
OR
microsoftwindows_10_21h1Range<10.0.19043.1645
OR
microsoftwindows_10_21h2Range<10.0.19044.1645
OR
microsoftwindows_11_21h2Range<10.0.22000.613
OR
microsoftwindows_7Match-sp1
OR
microsoftwindows_8.1Match-
OR
microsoftwindows_rt_8.1Match-
OR
microsoftwindows_server_2008sp2
OR
microsoftwindows_server_2008Matchr2sp1x64
OR
microsoftwindows_server_2012Match-
OR
microsoftwindows_server_2012Matchr2
OR
microsoftwindows_server_2016Range<10.0.14393.5066
OR
microsoftwindows_server_2019Range<10.0.17763.2803
OR
microsoftwindows_server_2022Range<10.0.20348.643
OR
microsoftwindows_server_20h2Range<10.0.19042.1645
VendorProductVersionCPE
microsoftwindows_10_1507*cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:*
microsoftwindows_10_1607*cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:*
microsoftwindows_10_1809*cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*
microsoftwindows_10_1909*cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:*:*
microsoftwindows_10_20h2*cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:*
microsoftwindows_10_21h1*cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:*
microsoftwindows_10_21h2*cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*
microsoftwindows_11_21h2*cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*
microsoftwindows_7-cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
microsoftwindows_8.1-cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 191

Related

mscve 1
cve 1
cisa_kev 1
cvelist 1
prion 1
hivepro 2
attackerkb 3
rapid7blog 2
metasploit 1
zdt 1
qualysblog 1
thn 1
malwarebytes 1
threatpost 1
avleonov 1
nessus 11
mskb 15
openvas 7
kaspersky 2
mscve
mscve
Windows User Profile Service Elevation of Privilege Vulnerability
2022-04-12 08:00:00
cve
cve
CVE-2022-26904
2022-04-15 19:15:15
cisa_kev
cisa_kev
Microsoft Windows User Profile Service Privilege Escalation Vulnerability
2022-04-25 00:00:00
cvelist
cvelist
CVE-2022-26904 Windows User Profile Service Elevation of Privilege Vulnerability
2022-04-15 19:05:42
prion
prion
Privilege escalation
2022-04-15 19:15:00
hivepro
hivepro
Microsoft Patch Tuesday April 2022 addressed two zero-day vulnerabilities
2022-04-14 05:08:02
Weekly Threat Digest: 11 – 17 April 2022
2022-04-21 04:59:07
attackerkb
attackerkb
CVE-2022-26904
2022-04-15 00:00:00
CVE-2021-34484
2021-08-12 00:00:00
CVE-2022-21919
2022-01-11 00:00:00
rapid7blog
rapid7blog
Metasploit Wrap-Up
2022-04-08 17:50:10
Patch Tuesday - April 2022
2022-04-12 18:48:11
metasploit
metasploit
User Profile Arbitrary Junction Creation Local Privilege Elevation
2022-03-21 17:05:48
zdt
zdt
Windows User Profile Service Privlege Escalation Exploit
2022-04-12 00:00:00
qualysblog
qualysblog
April 2022 Patch Tuesday: Microsoft Releases 145 Vulnerabilities with 10 Critical; Adobe Releases 4 Advisories, 78 Vulnerabilities with 51 Critical.
2022-04-12 20:07:30
thn
thn
Microsoft Issues Patches for 2 Windows Zero-Days and 126 Other Vulnerabilities
2022-04-13 03:22:00
malwarebytes
malwarebytes
April’s Patch Tuesday update includes fixes for two zero-day vulnerabilities
2022-04-13 13:57:39
threatpost
threatpost
Microsoft Zero-Days, Wormable Bugs Spark Concern
2022-04-12 20:00:54
avleonov
avleonov
Microsoft Patch Tuesday April 2022 and custom CVE comments sources in Vulristics
2022-04-23 09:22:32
nessus
nessus
KB5012632: Windows Server 2008 Security Update (April 2022)
2022-04-12 00:00:00
KB5012653: Windows 10 version 1507 LTS Security Update (April 2022)
2022-04-12 00:00:00
KB5012666: Windows Server 2012 Security Update (April 2022)
2022-04-12 00:00:00
mskb
mskb
April 12, 2022β€”KB5012658 (Monthly Rollup)
2022-04-12 08:00:00
April 12, 2022β€”KB5012632 (Security-only update)
2022-04-12 08:00:00
April 12, 2022β€”KB5012626 (Monthly Rollup)
2022-04-12 08:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5012653)
2022-04-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5012626)
2022-04-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5012592)
2023-08-08 00:00:00
kaspersky
kaspersky
KLA12509 Multiple vulnerabilities in Microsoft Products (ESU)
2022-04-12 00:00:00
KLA12502 Multiple vulnerabilities in Microsoft Windows
2022-04-12 00:00:00

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

47.0%

JSON
Related for NVD:CVE-2022-26904
mscve1cve1cisa_kev1cvelist1prion1hivepro2attackerkb3rapid7blog2metasploit1zdt1qualysblog1thn1malwarebytes1threatpost1avleonov1nessus11mskb15openvas7kaspersky2