Microsoft Windows Vulnerabilidad

Cronología

El año pasado

Versión

Server 20162354
102238
Server 20192181
Server 20122146
8.12139

Contramedidas

Official Fix4668
Temporary Fix0
Workaround304
Unavailable40
Not Defined193

Explotabilidad

High153
Functional59
Proof-of-Concept980
Unproven1043
Not Defined2970

Vector de acceso

Not Defined0
Physical26
Local1436
Adjacent158
Network3585

Autenticación

Not Defined0
High109
Low3079
None2017

La interacción del usuario

Not Defined0
Required674
None4531

C3BM Index

El año pasado

CVSSv3 Base

≤10
≤20
≤37
≤4270
≤5492
≤61003
≤7788
≤81687
≤9707
≤10251

CVSSv3 Temp

≤10
≤20
≤324
≤4318
≤5817
≤6836
≤71684
≤81099
≤9288
≤10139

VulDB

≤10
≤21
≤363
≤4377
≤5611
≤6976
≤71023
≤81134
≤9753
≤10267

NVD

≤10
≤20
≤35
≤417
≤5147
≤6420
≤7251
≤81170
≤9247
≤1051

CNA

≤10
≤20
≤30
≤41
≤514
≤642
≤7108
≤8179
≤958
≤109

Proveedor

≤10
≤20
≤35
≤419
≤5273
≤6448
≤7518
≤81274
≤9242
≤1056

Research

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤81
≤91
≤100

Explotar día 0

<1k7
<2k4
<5k21
<10k129
<25k767
<50k1402
<100k2175
≥100k700

Explotar hoy

<1k1615
<2k164
<5k568
<10k879
<25k1860
<50k95
<100k24
≥100k0

Explotar el volumen del mercado

El año pasado

🔴 CTI Ocupaciones

Affected Versions (147): 1.0, 1.1, 1.1.352, 1.2, 2.1, 2.6, 3.1.4000.1823, 3.11, 4.0, 4.0 SP1, 4.0 SP2, 4.0 SP3, 4.0 SP5, 4.0 SP6, 4.1, 5, 5.0, 5.1, 6.0, 6.0.2900.218, 6.00.2900.5512, 6.1, 6.1.76, 6.2, 6.3, 6.4, 7, 7 SP1, 7 SP 1, 7.0, 7.1, 7.5, 8, 8.0, 8.00.00.4477, 8.1, 8.5, 8.5.1, 9, 9.0, 9.1, 9.2, 9.3, 9.4, 9.5, 10, 10 20H2, 10 21H1, 10 21H2, 10 1511, 10 1606, 10 1607, 10 1703, 10 1709, 10 1803, 10 1809, 10 1903, 10 1909, 10 2004, 10 Mobile, 10 Version 1809 for 32-bit Systems, 10.00.00.4036, 11, 11.0.5721.523, 11.0.5721.526, 11.0.5721.5145, 12, 64-bit SP2, 95, 98, 98 SP1, 98SE, 1511, 1999, 2000, 2000 SP1, 2000 SP2, 2000 SP3, 2000 SP4, 2003, 2003 SP2, 2005, 2008 R2 SP1, 2008 SP2, 2009, 2011, 2012, 2012 R2, 2016, CE, CE 3.0.9348, ME, NT, NT 3.1, NT 3.5, NT 3.51, NT 3.51 SP4, NT 4.0, NT 4.0 Beta, NT 4.0 SP1, NT 4.0 SP2, NT 4.0 SP3, NT 4.0 SP4, NT 4.0 SP5, NT 4.0 SP6a, R2, RT, RT 8.1, RT8.1, Remote Desktop client, SP3, Server 20H2, Server 1709, Server 1803, Server 1903, Server 1909, Server 1930, Server 2003, Server 2003 R2 SP1, Server 2003 R2 SP2, Server 2003 SP1, Server 2003 SP2, Server 2004, Server 2008, Server 2008 R2, Server 2008 R2 SP1, Server2008 R2 SP1, Server 2008 R2 SP2, Server 2008 SP2, Server 2008 SP2, Server 2012, Server2012, Server 2012 R2, Server 2013, Server 2016, Server 2018 R2 SP1, Server 2018 SP2, Server 2019, Server 2022, Server 2022 Azure Edition Core Hotpatch, Vista, Vista SP1, Vista SP2, XP, XP SP1, XP SP2, XP SP3

Link to Product Website: https://www.microsoft.com/en-us/windows

Tipo de software: Operating System

Fecha de publicaciónBaseTempVulnerabilidad0dayHoyExpConCTICVE
2022-09-136.45.5Microsoft Windows SPNEGO Extended Negotiation divulgación de información$25k-$100k$5k-$25kUnprovenOfficial Fix0.22CVE-2022-37958
2022-09-138.37.3Microsoft Windows Common Log File System Driver Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix1.36CVE-2022-37969
2022-09-136.05.3Microsoft Windows Event Tracing denegación de servicio$5k-$25k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-35832
2022-09-138.37.3Microsoft Windows Common Log File System Driver Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-35803
2022-09-138.37.5Microsoft Windows GDI Privilege Escalation$25k-$100k$5k-$25kProof-of-ConceptOfficial Fix0.04CVE-2022-34729
2022-09-138.17.3Microsoft Windows Kerberos Remote Code Execution$25k-$100k$5k-$25kProof-of-ConceptOfficial Fix0.10CVE-2022-33679
2022-09-138.17.1Microsoft Windows Kerberos Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-33647
2022-09-137.36.3Microsoft Windows Photo Import API Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.21CVE-2022-26928
2022-09-135.44.7Microsoft Windows Graphics divulgación de información$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2022-38006
2022-09-134.94.3Microsoft Windows Remote Access Connection Manager divulgación de información$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2022-35831
2022-09-138.87.7Microsoft Windows ODBC Driver Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2022-34730
2022-09-138.87.7Microsoft Windows OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-35834
2022-09-136.85.9Microsoft Windows Raw Image Extension Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2022-38011
2022-09-138.37.3Microsoft Windows Print Spooler Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.46CVE-2022-38005
2022-09-137.06.1Microsoft Windows Fax Service Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2022-38004
2022-09-138.37.3Microsoft Windows Kernel Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-37964
2022-09-135.44.7Microsoft Windows Network Device Enrollment Service divulgación de información$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2022-37959
2022-09-138.37.3Microsoft Windows Kernel Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-37957
2022-09-138.37.3Microsoft Windows Kernel Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.28CVE-2022-37956
2022-09-138.37.3Microsoft Windows Group Policy Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-37955
2022-09-138.37.3Microsoft Windows DirectX Graphics Kernel Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-37954
2022-09-138.87.8Microsoft Windows Enterprise App Management Service Privilege Escalation$25k-$100k$5k-$25kProof-of-ConceptOfficial Fix0.04CVE-2022-35841
2022-09-138.87.7Microsoft Windows OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-35840
2022-09-137.56.5Microsoft Windows HTTP V3 denegación de servicio$5k-$25k$5k-$25kUnprovenOfficial Fix0.11CVE-2022-35838
2022-09-134.64.1Microsoft Windows Graphics divulgación de información$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-35837
2022-09-138.87.7Microsoft Windows OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-35836
2022-09-138.87.7Microsoft Windows OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-35835
2022-09-137.56.5Microsoft Windows Secure Channel denegación de servicio$5k-$25k$5k-$25kUnprovenOfficial Fix0.11CVE-2022-35833
2022-09-138.17.1Microsoft Windows Remote Procedure Call Runtime Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-35830
2022-09-138.87.7Microsoft Windows ODBC Driver Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-34734
2022-09-138.87.7Microsoft Windows OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-34733
2022-09-138.87.7Microsoft Windows ODBC Driver Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-34732
2022-09-138.87.7Microsoft Windows OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-34731
2022-09-134.94.3Microsoft Windows Graphics divulgación de información$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-34728
2022-09-138.87.7Microsoft Windows ODBC Driver Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-34727
2022-09-138.87.7Microsoft Windows ODBC Driver Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-34726
2022-09-137.36.3Microsoft Windows ALPC Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-34725
2022-09-137.56.5Microsoft Windows DNS Server denegación de servicio$5k-$25k$5k-$25kUnprovenOfficial Fix0.11CVE-2022-34724
2022-09-134.94.3Microsoft Windows DPAPI divulgación de información$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-34723
2022-09-139.88.5Microsoft Windows IKE Protocol Extension Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.50CVE-2022-34722
2022-09-139.88.5Microsoft Windows IKE Protocol Extension Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix1.11CVE-2022-34721
2022-09-137.56.5Microsoft Windows IKE Extension denegación de servicio$5k-$25k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-34720
2022-09-138.37.3Microsoft Windows Distributed File System Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.14CVE-2022-34719
2022-09-139.88.5Microsoft Windows TCP/IP Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix2.79CVE-2022-34718
2022-09-138.87.7Microsoft Windows LDAP Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.14CVE-2022-30200
2022-09-137.86.8Microsoft Windows Secure Channel denegación de servicio$5k-$25k$5k-$25kUnprovenOfficial Fix0.04CVE-2022-30196
2022-09-138.17.1Microsoft Windows Credential Roaming Service Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.11CVE-2022-30170
2022-08-158.07.0Microsoft Windows Defender Credential Guard Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.11CVE-2022-35822
2022-08-158.37.3Microsoft Windows Defender Credential Guard Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2022-34711
2022-08-098.17.4Microsoft Windows Bluetooth Driver Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2022-35820

5155 no se muestran más entradas

más entradas por Microsoft

Do you need the next level of professionalism?

Upgrade your account now!