Vulnerability Details : CVE-2022-41033
Windows COM+ Event System Service Elevation of Privilege Vulnerability
Vulnerability category: Gain privilege
CVE-2022-41033 is in the CISA Known Exploited Vulnerabilities Catalog
CISA vulnerability name:
Microsoft Windows COM+ Event System Service Privilege Escalation Vulnerability
CISA required action:
Apply updates per vendor instructions.
CISA description:
Microsoft Windows COM+ Event System Service contains an unspecified vulnerability that allows for privilege escalation.
Notes:
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-41033
Added on
2022-10-11
Action due date
2022-11-01
Exploit prediction scoring system (EPSS) score for CVE-2022-41033
0.07%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 30 %
Percentile, the proportion of vulnerabilities that are scored at or less