# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
1 |
CVE-2022-32230 |
476 |
|
|
2022-06-14 |
2022-06-23 |
7.8 |
None |
Remote |
Low |
Not required |
None |
None |
Complete |
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot. |
2 |
CVE-2022-30190 |
|
|
Exec Code |
2022-06-01 |
2022-06-07 |
9.3 |
None |
Remote |
Medium |
Not required |
Complete |
Complete |
Complete |
Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability. |
3 |
CVE-2022-30166 |
|
|
|
2022-06-15 |
2022-06-27 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability. |
4 |
CVE-2022-30165 |
|
|
|
2022-06-15 |
2022-06-27 |
6.5 |
None |
Remote |
Low |
??? |
Partial |
Partial |
Partial |
Windows Kerberos Elevation of Privilege Vulnerability. |
5 |
CVE-2022-30164 |
863 |
|
Bypass |
2022-06-15 |
2022-06-25 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Kerberos AppContainer Security Feature Bypass Vulnerability. |
6 |
CVE-2022-30163 |
362 |
|
Exec Code |
2022-06-15 |
2022-06-27 |
6.0 |
None |
Remote |
Medium |
??? |
Partial |
Partial |
Partial |
Windows Hyper-V Remote Code Execution Vulnerability. |
7 |
CVE-2022-30162 |
|
|
|
2022-06-15 |
2022-06-25 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
Windows Kernel Information Disclosure Vulnerability. |
8 |
CVE-2022-30161 |
|
|
Exec Code |
2022-06-15 |
2022-06-27 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153. |
9 |
CVE-2022-30160 |
|
|
|
2022-06-15 |
2022-06-25 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability. |
10 |
CVE-2022-30155 |
400 |
|
DoS |
2022-06-15 |
2022-06-25 |
7.1 |
None |
Remote |
Medium |
Not required |
None |
None |
Complete |
Windows Kernel Denial of Service Vulnerability. |
11 |
CVE-2022-30154 |
269 |
|
|
2022-06-15 |
2022-06-24 |
2.1 |
None |
Remote |
High |
??? |
None |
Partial |
None |
Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability. |
12 |
CVE-2022-30153 |
|
|
Exec Code |
2022-06-15 |
2022-06-27 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30161. |
13 |
CVE-2022-30152 |
400 |
|
DoS |
2022-06-15 |
2022-06-25 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
Windows Network Address Translation (NAT) Denial of Service Vulnerability. |
14 |
CVE-2022-30151 |
269 |
|
|
2022-06-15 |
2022-06-27 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability. |
15 |
CVE-2022-30150 |
269 |
|
|
2022-06-15 |
2022-06-25 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows Defender Remote Credential Guard Elevation of Privilege Vulnerability. |
16 |
CVE-2022-30149 |
|
|
Exec Code |
2022-06-15 |
2022-06-27 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30153, CVE-2022-30161. |
17 |
CVE-2022-30148 |
532 |
|
|
2022-06-15 |
2022-06-27 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
Windows Desired State Configuration (DSC) Information Disclosure Vulnerability. |
18 |
CVE-2022-30147 |
|
|
|
2022-06-15 |
2022-06-27 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Windows Installer Elevation of Privilege Vulnerability. |
19 |
CVE-2022-30146 |
|
|
Exec Code |
2022-06-15 |
2022-06-27 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161. |
20 |
CVE-2022-30145 |
94 |
|
Exec Code |
2022-06-15 |
2022-06-25 |
6.0 |
None |
Remote |
Medium |
??? |
Partial |
Partial |
Partial |
Windows Encrypting File System (EFS) Remote Code Execution Vulnerability. |
21 |
CVE-2022-30143 |
|
|
Exec Code |
2022-06-15 |
2022-06-27 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161. |
22 |
CVE-2022-30142 |
|
|
Exec Code |
2022-06-15 |
2022-06-27 |
7.6 |
None |
Remote |
High |
Not required |
Complete |
Complete |
Complete |
Windows File History Remote Code Execution Vulnerability. |
23 |
CVE-2022-30141 |
94 |
|
Exec Code |
2022-06-15 |
2022-06-25 |
9.3 |
None |
Remote |
Medium |
Not required |
Complete |
Complete |
Complete |
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161. |
24 |
CVE-2022-30140 |
|
|
Exec Code |
2022-06-15 |
2022-06-27 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
Windows iSCSI Discovery Service Remote Code Execution Vulnerability. |
25 |
CVE-2022-30139 |
|
|
Exec Code |
2022-06-15 |
2022-06-27 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161. |
26 |
CVE-2022-30138 |
|
|
|
2022-05-18 |
2022-05-31 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29104, CVE-2022-29132. |
27 |
CVE-2022-30136 |
|
|
Exec Code |
2022-06-15 |
2022-06-24 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
Windows Network File System Remote Code Execution Vulnerability. |
28 |
CVE-2022-30132 |
|
|
|
2022-06-15 |
2022-06-24 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Windows Container Manager Service Elevation of Privilege Vulnerability. |
29 |
CVE-2022-30131 |
|
|
|
2022-06-15 |
2022-06-24 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability. |
30 |
CVE-2022-29151 |
|
|
|
2022-05-10 |
2022-05-23 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29135, CVE-2022-29150. |
31 |
CVE-2022-29150 |
|
|
|
2022-05-10 |
2022-05-23 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29135, CVE-2022-29151. |
32 |
CVE-2022-29142 |
|
|
|
2022-05-10 |
2022-05-23 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29133. |
33 |
CVE-2022-29141 |
|
|
Exec Code |
2022-05-10 |
2022-05-23 |
6.5 |
None |
Remote |
Low |
??? |
Partial |
Partial |
Partial |
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139. |
34 |
CVE-2022-29140 |
|
|
|
2022-05-10 |
2022-05-23 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
Windows Print Spooler Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29114. |
35 |
CVE-2022-29139 |
|
|
Exec Code |
2022-05-10 |
2022-05-23 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29141. |
36 |
CVE-2022-29138 |
|
|
|
2022-05-10 |
2022-05-23 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
Windows Clustered Shared Volume Elevation of Privilege Vulnerability. |
37 |
CVE-2022-29137 |
|
|
Exec Code |
2022-05-10 |
2022-05-23 |
6.5 |
None |
Remote |
Low |
??? |
Partial |
Partial |
Partial |
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29139, CVE-2022-29141. |
38 |
CVE-2022-29135 |
|
|
|
2022-05-10 |
2022-05-23 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29150, CVE-2022-29151. |
39 |
CVE-2022-29134 |
|
|
|
2022-05-10 |
2022-05-23 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29120, CVE-2022-29122, CVE-2022-29123. |
40 |
CVE-2022-29132 |
|
|
|
2022-05-10 |
2022-05-23 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29104. |
41 |
CVE-2022-29131 |
|
|
Exec Code |
2022-05-10 |
2022-05-23 |
9.0 |
None |
Remote |
Low |
??? |
Complete |
Complete |
Complete |
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. |
42 |
CVE-2022-29130 |
|
|
Exec Code |
2022-05-10 |
2022-05-23 |
9.3 |
None |
Remote |
Medium |
Not required |
Complete |
Complete |
Complete |
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. |
43 |
CVE-2022-29129 |
|
|
Exec Code |
2022-05-10 |
2022-05-23 |
9.0 |
None |
Remote |
Low |
??? |
Complete |
Complete |
Complete |
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. |
44 |
CVE-2022-29128 |
|
|
Exec Code |
2022-05-10 |
2022-05-23 |
9.0 |
None |
Remote |
Low |
??? |
Complete |
Complete |
Complete |
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141. |
45 |
CVE-2022-29127 |
|
|
Bypass |
2022-05-10 |
2022-05-23 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
BitLocker Security Feature Bypass Vulnerability. |
46 |
CVE-2022-29126 |
|
|
|
2022-05-10 |
2022-05-23 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability. |
47 |
CVE-2022-29125 |
269 |
|
|
2022-05-10 |
2022-05-23 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows Push Notifications Apps Elevation of Privilege Vulnerability. |
48 |
CVE-2022-29123 |
668 |
|
|
2022-05-10 |
2022-05-23 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29120, CVE-2022-29122, CVE-2022-29134. |
49 |
CVE-2022-29122 |
668 |
|
|
2022-05-10 |
2022-05-23 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29120, CVE-2022-29123, CVE-2022-29134. |
50 |
CVE-2022-29121 |
400 |
|
DoS |
2022-05-10 |
2022-05-25 |
3.3 |
None |
Local Network |
Low |
Not required |
None |
None |
Partial |
Windows WLAN AutoConfig Service Denial of Service Vulnerability. |