Overview
- Description
- Win32k Elevation of Privilege Vulnerability
- Source
- secure@microsoft.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
Known exploits
Data from CISA
- Vulnerability name
- Microsoft Win32k Privilege Escalation Vulnerability
- Exploit added on
- Apr 25, 2022
- Exploit action due
- May 16, 2022
- Required action
- Apply updates per vendor instructions.
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Social media
- Hype score
- Not currently trending
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D03564D3-788A-4BD7-B717-B3681515A5BE", "versionEndExcluding": "10.0.17763.2237" }, { "criteria": "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2DFF53D4-2910-4A58-81DF-6DDC01D2C523", "versionEndExcluding": "10.0.18363.1854" }, { "criteria": "cpe:2.3:o:microsoft:windows_10_2004:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C995398E-B786-4AC7-B6D4-790ED8C68F8C", "versionEndExcluding": "10.0.19041.1288" }, { "criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "129B19A3-40D5-48D4-B3CA-8934062E6933", "versionEndExcluding": "10.0.19042.1288" }, { "criteria": "cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D78C68AE-C471-4234-B0D0-7E09D2E131AB", "versionEndExcluding": "10.0.19043.1288" }, { "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2FF279C0-02C7-4D60-85E8-9FB89492D738", "versionEndExcluding": "10.0.22000.258" }, { "criteria": "cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "486E7F23-6A3B-46AA-9F31-91EDF933B36A", "versionEndExcluding": "10.0.19041.1288" }, { "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A555704D-BB77-46A3-A0F9-62409FCC5F40", "versionEndExcluding": "10.0.17763.2237" }, { "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E5F3F99-530D-4065-9133-9C251F89B406", "versionEndExcluding": "10.0.20348.288" }, { "criteria": "cpe:2.3:o:microsoft:windows_server_20h2:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "224FA1B7-84EF-435F-BBFA-33BD39C32595", "versionEndExcluding": "10.0.19042.1288" } ], "operator": "OR" } ] } ]