Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-26830 (GCVE-0-2022-26830)
Vulnerability from cvelistv5
Published
2022-04-15 19:05
Modified
2025-01-02 18:52
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- Remote Code Execution
Summary
DiskUsage.exe Remote Code Execution Vulnerability
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Microsoft | Windows Server 2022 |
Version: 10.0.20348.0 < 10.0.20348.643 |
|||||||
|
|||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-26830",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-18T14:16:09.361416Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-07-18T14:16:18.144Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-03T05:11:45.337Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "DiskUsage.exe Remote Code Execution Vulnerability",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2022",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.20348.643",
"status": "affected",
"version": "10.0.20348.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems",
"ARM64-based Systems"
],
"product": "Windows 11 version 21H2",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.22000.613",
"status": "affected",
"version": "10.0.0",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.20348.643",
"versionStartIncluding": "10.0.20348.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
"versionEndExcluding": "10.0.22000.613",
"versionStartIncluding": "10.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"datePublic": "2022-04-12T08:00:00+00:00",
"descriptions": [
{
"lang": "en-US",
"value": "DiskUsage.exe Remote Code Execution Vulnerability"
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en-US",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Remote Code Execution",
"lang": "en-US",
"type": "Impact"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-01-02T18:52:12.697Z",
"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"shortName": "microsoft"
},
"references": [
{
"name": "DiskUsage.exe Remote Code Execution Vulnerability",
"tags": [
"vendor-advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
}
],
"title": "DiskUsage.exe Remote Code Execution Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"assignerShortName": "microsoft",
"cveId": "CVE-2022-26830",
"datePublished": "2022-04-15T19:05:24",
"dateReserved": "2022-03-09T00:00:00",
"dateUpdated": "2025-01-02T18:52:12.697Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2022-26830\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2022-04-15T19:15:14.587\",\"lastModified\":\"2024-11-21T06:54:35.993\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"DiskUsage.exe Remote Code Execution Vulnerability\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de Ejecuci\u00f3n de C\u00f3digo Remota de DiskUsage.exe\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.6,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:H/Au:N/C:P/I:P/A:P\",\"baseScore\":5.1,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"HIGH\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":4.9,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"B9F64296-66BF-4F1D-A11C-0C44C347E2AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5D7F7DDB-440E-42CD-82F4-B2C13F3CC462\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830\",\"source\":\"secure@microsoft.com\"},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830\", \"name\": \"DiskUsage.exe Remote Code Execution Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T05:11:45.337Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-26830\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-07-18T14:16:09.361416Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-18T14:16:15.436Z\"}}], \"cna\": {\"title\": \"DiskUsage.exe Remote Code Execution Vulnerability\", \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C\"}, \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2022\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.20348.0\", \"lessThan\": \"10.0.20348.643\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 11 version 21H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.0\", \"lessThan\": \"10.0.22000.613\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\", \"ARM64-based Systems\"]}], \"datePublic\": \"2022-04-12T08:00:00+00:00\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830\", \"name\": \"DiskUsage.exe Remote Code Execution Vulnerability\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en-US\", \"value\": \"DiskUsage.exe Remote Code Execution Vulnerability\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en-US\", \"type\": \"Impact\", \"description\": \"Remote Code Execution\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.20348.643\", \"versionStartIncluding\": \"10.0.20348.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.22000.613\", \"versionStartIncluding\": \"10.0.0\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"shortName\": \"microsoft\", \"dateUpdated\": \"2025-01-02T18:52:12.697Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2022-26830\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-02T18:52:12.697Z\", \"dateReserved\": \"2022-03-09T00:00:00\", \"assignerOrgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"datePublished\": \"2022-04-15T19:05:24\", \"assignerShortName\": \"microsoft\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
msrc_cve-2022-26830
Vulnerability from csaf_microsoft
Published
2022-04-12 08:00
Modified
2022-04-12 08:00
Summary
DiskUsage.exe Remote Code Execution Vulnerability
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
Customer Action
Required. The vulnerability documented by this CVE requires customer action to resolve.
{
"document": {
"aggregate_severity": {
"namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
},
{
"category": "general",
"text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
"title": "Customer Action"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2022-26830 DiskUsage.exe Remote Code Execution Vulnerability - HTML",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
},
{
"category": "self",
"summary": "CVE-2022-26830 DiskUsage.exe Remote Code Execution Vulnerability - CSAF",
"url": "https://msrc.microsoft.com/csaf/2022/msrc_cve-2022-26830.json"
},
{
"category": "external",
"summary": "Microsoft Exploitability Index",
"url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "DiskUsage.exe Remote Code Execution Vulnerability",
"tracking": {
"current_release_date": "2022-04-12T08:00:00.000Z",
"generator": {
"date": "2025-01-02T18:51:02.277Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2022-26830",
"initial_release_date": "2022-04-12T08:00:00.000Z",
"revision_history": [
{
"date": "2022-04-12T08:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.20348.643",
"product": {
"name": "Windows Server 2022 \u003c10.0.20348.643",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "10.0.20348.643",
"product": {
"name": "Windows Server 2022 10.0.20348.643",
"product_id": "11923"
}
}
],
"category": "product_name",
"name": "Windows Server 2022"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.20348.643",
"product": {
"name": "Windows Server 2022 (Server Core installation) \u003c10.0.20348.643",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "10.0.20348.643",
"product": {
"name": "Windows Server 2022 (Server Core installation) 10.0.20348.643",
"product_id": "11924"
}
}
],
"category": "product_name",
"name": "Windows Server 2022 (Server Core installation)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.22000.613",
"product": {
"name": "Windows 11 version 21H2 for x64-based Systems \u003c10.0.22000.613",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "10.0.22000.613",
"product": {
"name": "Windows 11 version 21H2 for x64-based Systems 10.0.22000.613",
"product_id": "11926"
}
}
],
"category": "product_name",
"name": "Windows 11 version 21H2 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.22000.613",
"product": {
"name": "Windows 11 version 21H2 for ARM64-based Systems \u003c10.0.22000.613",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "10.0.22000.613",
"product": {
"name": "Windows 11 version 21H2 for ARM64-based Systems 10.0.22000.613",
"product_id": "11927"
}
}
],
"category": "product_name",
"name": "Windows 11 version 21H2 for ARM64-based Systems"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-26830",
"notes": [
{
"category": "general",
"text": "Microsoft",
"title": "Assigning CNA"
},
{
"category": "faq",
"text": "Successful exploitation of this vulnerability requires an attacker to take additional actions prior to exploitation to prepare the target environment.",
"title": "According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?"
},
{
"category": "faq",
"text": "This vulnerability requires that a user with an affected version of Windows access a malicious server. An attacker would have to host a specially crafted server share or website. An attacker would have no way to force users to visit this specially crafted server share or website, but would have to convince them to visit the server share or website, typically by way of an enticement in an email or chat message.",
"title": "According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?"
}
],
"product_status": {
"fixed": [
"11923",
"11924",
"11926",
"11927"
],
"known_affected": [
"1",
"2",
"3",
"4"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-26830 DiskUsage.exe Remote Code Execution Vulnerability - HTML",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
},
{
"category": "self",
"summary": "CVE-2022-26830 DiskUsage.exe Remote Code Execution Vulnerability - CSAF",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2022-04-12T08:00:00.000Z",
"details": "10.0.20348.643:Security Update:https://support.microsoft.com/help/5012604",
"product_ids": [
"4",
"3"
],
"url": "https://support.microsoft.com/help/5012604"
},
{
"category": "vendor_fix",
"date": "2022-04-12T08:00:00.000Z",
"details": "10.0.22000.613:Security Update:https://support.microsoft.com/help/5012592",
"product_ids": [
"2",
"1"
],
"url": "https://support.microsoft.com/help/5012592"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"exploitCodeMaturity": "UNPROVEN",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"remediationLevel": "OFFICIAL_FIX",
"reportConfidence": "CONFIRMED",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4"
]
}
],
"threats": [
{
"category": "impact",
"details": "Remote Code Execution"
},
{
"category": "exploit_status",
"details": "Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely"
}
],
"title": "DiskUsage.exe Remote Code Execution Vulnerability"
}
]
}
cnvd-2022-71973
Vulnerability from cnvd
Title
Microsoft Windows DiskUsage.exe远程代码执行漏洞
Description
Microsoft Windows是一套个人设备使用的操作系统。
Microsoft Windows DiskUsage.exe存在远程代码执行漏洞。该漏洞源于外部输入数据构造代码段的过程中,网络系统或产品未能正确过滤其中的特殊元素。攻击者可利用此漏洞导致任意代码执行。
Severity
中
VLAI Severity ?
Patch Name
Microsoft Windows DiskUsage.exe远程代码执行漏洞的补丁
Patch Description
Microsoft Windows是一套个人设备使用的操作系统。
Microsoft Windows DiskUsage.exe存在远程代码执行漏洞。该漏洞源于外部输入数据构造代码段的过程中,网络系统或产品未能正确过滤其中的特殊元素。攻击者可利用此漏洞导致任意代码执行。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830
Reference
https://nvd.nist.gov/vuln/detail/CVE-2022-26830
Impacted products
| Name | ['Microsoft Windows Server 2022', 'Microsoft Windows 11'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2022-26830",
"cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2022-26830"
}
},
"description": "Microsoft Windows\u662f\u4e00\u5957\u4e2a\u4eba\u8bbe\u5907\u4f7f\u7528\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\n\nMicrosoft Windows DiskUsage.exe\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5916\u90e8\u8f93\u5165\u6570\u636e\u6784\u9020\u4ee3\u7801\u6bb5\u7684\u8fc7\u7a0b\u4e2d\uff0c\u7f51\u7edc\u7cfb\u7edf\u6216\u4ea7\u54c1\u672a\u80fd\u6b63\u786e\u8fc7\u6ee4\u5176\u4e2d\u7684\u7279\u6b8a\u5143\u7d20\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6b64\u6f0f\u6d1e\u5bfc\u81f4\u4efb\u610f\u4ee3\u7801\u6267\u884c\u3002",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2022-71973",
"openTime": "2022-10-28",
"patchDescription": "Microsoft Windows\u662f\u4e00\u5957\u4e2a\u4eba\u8bbe\u5907\u4f7f\u7528\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nMicrosoft Windows DiskUsage.exe\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5916\u90e8\u8f93\u5165\u6570\u636e\u6784\u9020\u4ee3\u7801\u6bb5\u7684\u8fc7\u7a0b\u4e2d\uff0c\u7f51\u7edc\u7cfb\u7edf\u6216\u4ea7\u54c1\u672a\u80fd\u6b63\u786e\u8fc7\u6ee4\u5176\u4e2d\u7684\u7279\u6b8a\u5143\u7d20\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6b64\u6f0f\u6d1e\u5bfc\u81f4\u4efb\u610f\u4ee3\u7801\u6267\u884c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Microsoft Windows DiskUsage.exe\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": [
"Microsoft Windows Server 2022",
"Microsoft Windows 11"
]
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2022-26830",
"serverity": "\u4e2d",
"submitTime": "2022-04-15",
"title": "Microsoft Windows DiskUsage.exe\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}
ghsa-rrx6-pgjg-pmv7
Vulnerability from github
Published
2022-04-16 00:00
Modified
2022-04-16 00:00
Severity ?
VLAI Severity ?
Details
DiskUsage.exe Remote Code Execution Vulnerability.
{
"affected": [],
"aliases": [
"CVE-2022-26830"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2022-04-15T19:15:00Z",
"severity": "HIGH"
},
"details": "DiskUsage.exe Remote Code Execution Vulnerability.",
"id": "GHSA-rrx6-pgjg-pmv7",
"modified": "2022-04-16T00:00:31Z",
"published": "2022-04-16T00:00:31Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-26830"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
},
{
"type": "WEB",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26830"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
fkie_cve-2022-26830
Vulnerability from fkie_nvd
Published
2022-04-15 19:15
Modified
2024-11-21 06:54
Severity ?
Summary
DiskUsage.exe Remote Code Execution Vulnerability
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| microsoft | windows_11 | - | |
| microsoft | windows_11 | - | |
| microsoft | windows_server_2022 | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:arm64:*",
"matchCriteriaId": "B9F64296-66BF-4F1D-A11C-0C44C347E2AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:x64:*",
"matchCriteriaId": "5D7F7DDB-440E-42CD-82F4-B2C13F3CC462",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
"matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "DiskUsage.exe Remote Code Execution Vulnerability"
},
{
"lang": "es",
"value": "Una vulnerabilidad de Ejecuci\u00f3n de C\u00f3digo Remota de DiskUsage.exe"
}
],
"id": "CVE-2022-26830",
"lastModified": "2024-11-21T06:54:35.993",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 4.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 5.9,
"source": "secure@microsoft.com",
"type": "Secondary"
}
]
},
"published": "2022-04-15T19:15:14.587",
"references": [
{
"source": "secure@microsoft.com",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CERTFR-2022-AVI-335
Vulnerability from certfr_avis
De multiples vulnérabilités ont été corrigées dans Microsoft Windows. Elles permettent à un attaquant de provoquer une exécution de code à distance, une atteinte à la confidentialité des données, une élévation de privilèges et un déni de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | Windows | Windows Server 2022 | ||
| Microsoft | Windows | Windows Server 2012 | ||
| Microsoft | Windows | Windows 10 pour systèmes x64 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes x64 | ||
| Microsoft | Windows | Windows 10 Version 1909 pour systèmes x64 | ||
| Microsoft | Windows | Windows Server 2019 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2019 | ||
| Microsoft | Windows | Windows 11 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows Server 2012 R2 | ||
| Microsoft | Windows | Windows 10 Version 21H1 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows Server 2022 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 1607 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes x64 Service Pack 2 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 10 Version 20H2 pour systèmes x64 | ||
| Microsoft | Windows | Windows 10 Version 21H1 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows Server 2016 (Server Core installation) | ||
| Microsoft | Windows | Windows Upgrade Assistant | ||
| Microsoft | Windows | Windows RT 8.1 | ||
| Microsoft | Windows | Windows 10 Version 1909 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows 10 Version 21H1 pour systèmes x64 | ||
| Microsoft | Windows | Windows 7 pour systèmes x64 Service Pack 1 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes x64 Service Pack 2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 1909 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 10 Version 20H2 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes 32 bits Service Pack 2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 1607 pour systèmes x64 | ||
| Microsoft | Windows | Windows Server 2012 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes x64 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes 32 bits Service Pack 2 | ||
| Microsoft | Windows | Windows Server 2008 R2 pour systèmes x64 Service Pack 1 | ||
| Microsoft | Windows | Windows 11 pour systèmes x64 | ||
| Microsoft | Windows | Windows 8.1 pour systèmes x64 | ||
| Microsoft | Windows | Windows Server 2016 | ||
| Microsoft | Windows | Windows 10 Version 20H2 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows 8.1 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows Server, version 20H2 (Server Core Installation) | ||
| Microsoft | Windows | Windows Server 2008 R2 pour systèmes x64 Service Pack 1 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2012 R2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 7 pour systèmes 32 bits Service Pack 1 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Windows Server 2022",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1909 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H1 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 20H2 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H1 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Upgrade Assistant",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows RT 8.1",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1909 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H1 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 7 pour syst\u00e8mes x64 Service Pack 1",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1909 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 20H2 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 8.1 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 20H2 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 8.1 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server, version 20H2 (Server Core Installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 7 pour syst\u00e8mes 32 bits Service Pack 1",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2022-23257",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23257"
},
{
"name": "CVE-2022-26794",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26794"
},
{
"name": "CVE-2022-24486",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24486"
},
{
"name": "CVE-2022-26796",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26796"
},
{
"name": "CVE-2022-24495",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24495"
},
{
"name": "CVE-2022-24500",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24500"
},
{
"name": "CVE-2022-26821",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26821"
},
{
"name": "CVE-2022-24534",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24534"
},
{
"name": "CVE-2022-24487",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24487"
},
{
"name": "CVE-2022-26786",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26786"
},
{
"name": "CVE-2022-21983",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21983"
},
{
"name": "CVE-2022-26918",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26918"
},
{
"name": "CVE-2022-24494",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24494"
},
{
"name": "CVE-2022-24546",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24546"
},
{
"name": "CVE-2022-24549",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24549"
},
{
"name": "CVE-2022-26807",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26807"
},
{
"name": "CVE-2022-26919",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26919"
},
{
"name": "CVE-2022-24489",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24489"
},
{
"name": "CVE-2022-26826",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26826"
},
{
"name": "CVE-2022-26830",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26830"
},
{
"name": "CVE-2022-26812",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26812"
},
{
"name": "CVE-2022-26914",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26914"
},
{
"name": "CVE-2022-26792",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26792"
},
{
"name": "CVE-2022-26904",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26904"
},
{
"name": "CVE-2022-26825",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26825"
},
{
"name": "CVE-2022-24527",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24527"
},
{
"name": "CVE-2022-24496",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24496"
},
{
"name": "CVE-2022-26791",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26791"
},
{
"name": "CVE-2022-26783",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26783"
},
{
"name": "CVE-2022-26790",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26790"
},
{
"name": "CVE-2022-26802",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26802"
},
{
"name": "CVE-2022-26818",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26818"
},
{
"name": "CVE-2022-24542",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24542"
},
{
"name": "CVE-2022-24484",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24484"
},
{
"name": "CVE-2022-24539",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24539"
},
{
"name": "CVE-2022-24493",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24493"
},
{
"name": "CVE-2022-24545",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24545"
},
{
"name": "CVE-2022-26797",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26797"
},
{
"name": "CVE-2022-26917",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26917"
},
{
"name": "CVE-2022-24498",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24498"
},
{
"name": "CVE-2022-26785",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26785"
},
{
"name": "CVE-2022-26829",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26829"
},
{
"name": "CVE-2022-24521",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24521"
},
{
"name": "CVE-2022-26789",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26789"
},
{
"name": "CVE-2022-26808",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26808"
},
{
"name": "CVE-2022-26788",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26788"
},
{
"name": "CVE-2022-24536",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24536"
},
{
"name": "CVE-2022-26831",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26831"
},
{
"name": "CVE-2022-24492",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24492"
},
{
"name": "CVE-2022-26823",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26823"
},
{
"name": "CVE-2022-26920",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26920"
},
{
"name": "CVE-2022-26915",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26915"
},
{
"name": "CVE-2022-26793",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26793"
},
{
"name": "CVE-2022-26795",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26795"
},
{
"name": "CVE-2022-24538",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24538"
},
{
"name": "CVE-2022-24483",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24483"
},
{
"name": "CVE-2022-24488",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24488"
},
{
"name": "CVE-2022-26801",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26801"
},
{
"name": "CVE-2022-24537",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24537"
},
{
"name": "CVE-2022-26903",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26903"
},
{
"name": "CVE-2022-26814",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26814"
},
{
"name": "CVE-2022-24540",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24540"
},
{
"name": "CVE-2022-24541",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24541"
},
{
"name": "CVE-2022-23268",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23268"
},
{
"name": "CVE-2022-24474",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24474"
},
{
"name": "CVE-2022-26809",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26809"
},
{
"name": "CVE-2022-24544",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24544"
},
{
"name": "CVE-2022-26784",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26784"
},
{
"name": "CVE-2022-26916",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26916"
},
{
"name": "CVE-2022-26816",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26816"
},
{
"name": "CVE-2022-24533",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24533"
},
{
"name": "CVE-2022-26811",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26811"
},
{
"name": "CVE-2022-24490",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24490"
},
{
"name": "CVE-2022-24479",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24479"
},
{
"name": "CVE-2022-26819",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26819"
},
{
"name": "CVE-2022-26803",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26803"
},
{
"name": "CVE-2022-26815",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26815"
},
{
"name": "CVE-2022-26827",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26827"
},
{
"name": "CVE-2022-26817",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26817"
},
{
"name": "CVE-2022-22009",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22009"
},
{
"name": "CVE-2022-22008",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22008"
},
{
"name": "CVE-2022-26813",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26813"
},
{
"name": "CVE-2022-24530",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24530"
},
{
"name": "CVE-2022-26810",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26810"
},
{
"name": "CVE-2022-24481",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24481"
},
{
"name": "CVE-2022-26828",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26828"
},
{
"name": "CVE-2022-24547",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24547"
},
{
"name": "CVE-2022-26798",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26798"
},
{
"name": "CVE-2022-24485",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24485"
},
{
"name": "CVE-2022-24499",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24499"
},
{
"name": "CVE-2022-26787",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26787"
},
{
"name": "CVE-2022-24550",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24550"
},
{
"name": "CVE-2022-24491",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24491"
},
{
"name": "CVE-2022-24528",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24528"
},
{
"name": "CVE-2022-26824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26824"
},
{
"name": "CVE-2022-24543",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24543"
},
{
"name": "CVE-2022-26822",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26822"
},
{
"name": "CVE-2022-26820",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26820"
}
],
"initial_release_date": "2022-04-13T00:00:00",
"last_revision_date": "2022-04-13T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24489 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24489"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24496 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24496"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26915 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26915"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26795 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26795"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24544 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24544"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26918 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26918"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26831 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26831"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26822 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26822"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26797 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26797"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24534 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24534"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26904 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26904"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26788 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26788"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26796 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26796"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26783 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26783"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26919 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26919"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26820 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26820"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24488 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24488"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26807 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26807"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-22009 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22009"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24474 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24474"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24493 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24493"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24481 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24481"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26809 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26809"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26824 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26824"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24498 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24498"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24487 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24487"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26815 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26815"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24536 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24536"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26801 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26801"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24490 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24490"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24483 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24483"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24527 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24527"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26916 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26916"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-21983 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21983"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-22008 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22008"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26817 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26817"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-23257 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23257"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24537 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26829 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26829"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26786 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26786"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26798 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26798"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24545 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24545"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24550 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24550"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26903 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26903"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26823 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26823"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24539 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24539"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24538 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24538"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26792 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26792"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26920 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26920"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26789 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26789"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24491 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24491"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26794 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26794"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26802 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26802"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26811 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26811"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24485 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24485"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26787 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26787"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26826 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26826"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24546 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24546"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24543 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24543"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24486 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24486"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24547 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24547"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26814 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26814"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26793 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26793"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26828 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26828"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26803 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26803"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24530 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24530"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26825 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26825"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24484 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24484"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24492 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24492"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24494 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24494"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26810 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26810"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26830 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24495 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24495"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26791 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26791"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26813 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26813"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24542 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24542"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24541 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24541"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26785 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26785"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26808 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26808"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24549 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24549"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24500 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24500"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26819 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26819"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-23268 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23268"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24521 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24521"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24499 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24499"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24533 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24533"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26827 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26827"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26784 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26784"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24528 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24528"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26821 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26821"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24540 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24540"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26790 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26790"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26818 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26818"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-24479 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24479"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26812 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26812"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26917 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26917"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26914 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26914"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-26816 du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26816"
}
],
"reference": "CERTFR-2022-AVI-335",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2022-04-13T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eMicrosoft Windows\u003c/span\u003e. Elles permettent \u00e0 un attaquant\nde provoquer une ex\u00e9cution de code \u00e0 distance, une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de\nservice.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Windows",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft du 12 avril 2022",
"url": "https://msrc.microsoft.com/update-guide/"
}
]
}
gsd-2022-26830
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
DiskUsage.exe Remote Code Execution Vulnerability
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-26830",
"description": "DiskUsage.exe Remote Code Execution Vulnerability.",
"id": "GSD-2022-26830"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2022-26830"
],
"details": "DiskUsage.exe Remote Code Execution Vulnerability",
"id": "GSD-2022-26830",
"modified": "2023-12-13T01:19:39.480380Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secure@microsoft.com",
"ID": "CVE-2022-26830",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Windows Server 2022",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.20348.643"
}
]
}
},
{
"product_name": "Windows 11 version 21H2",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.22000.613"
}
]
}
}
]
},
"vendor_name": "Microsoft"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "DiskUsage.exe Remote Code Execution Vulnerability"
}
]
},
"impact": {
"cvss": [
{
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830",
"refsource": "MISC",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:arm64:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:x64:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secure@microsoft.com",
"ID": "CVE-2022-26830"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "DiskUsage.exe Remote Code Execution Vulnerability"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830",
"refsource": "MISC",
"tags": [],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26830"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 4.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 5.9
}
},
"lastModifiedDate": "2023-06-29T01:15Z",
"publishedDate": "2022-04-15T19:15Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…