CVE-2022-30154

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-30154
Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.6 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

2.1 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:S/C:N/I:P/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References
Link Resource
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30154 Patch Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:azure:*:*:*
History

20 Dec 2023, 22:15

Type Values Removed Values Added
Summary Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability. Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability

08 Aug 2023, 14:21

Type Values Removed Values Added
CWE CWE-269 NVD-CWE-noinfo
Information

Published : 2022-06-15 22:15

Updated : 2024-02-28 19:09

NVD link : CVE-2022-30154

Mitre link : CVE-2022-30154

CVE.ORG link : CVE-2022-30154

JSON object : View

Products Affected

microsoft

  • windows_server_2012
  • windows_server_2019
  • windows_10
  • windows_server_2016
  • windows_server_2022
CWE
NVD-CWE-noinfo