CVE-2022-35753

{"id": "CVE-2022-35753", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "secure@microsoft.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.2}]}, "published": "2023-05-31T19:15:16.877", "references": [{"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35753", "tags": ["Patch", "Vendor Advisory"], "source": "secure@microsoft.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability"}], "lastModified": "2023-06-07T20:53:15.907", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "2EFA9C64-845A-4586-AC7E-40648401ABBA", "versionEndExcluding": "10.0.10240.19387"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "E6989C4C-9E9D-4E88-8DFF-FC45FF77B58C", "versionEndExcluding": "10.0.10240.19387"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "88477737-BB11-4827-8F46-4F3584294342", "versionEndExcluding": "10.0.14393.5291"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "49F93CEE-F8F3-4748-8583-6508DD886571", "versionEndExcluding": "10.0.14393.5291"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*", "vulnerable": true, "matchCriteriaId": "897654D8-62FE-4791-92FD-9BB107818CB7", "versionEndExcluding": "10.0.17763.3287"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "8782B6CE-955B-4C27-AC23-89712AB0164C", "versionEndExcluding": "10.0.17763.3287"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "AA7ABB50-E9E2-492D-8C0E-6BDA4AAD519C", "versionEndExcluding": "10.0.17763.3287"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:arm64:*", "vulnerable": true, "matchCriteriaId": "A1086CAA-244A-4579-B0E6-8981C1A762F0", "versionEndExcluding": "10.0.19042.1889"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "23E66457-1CE9-445E-8698-54A754FA9169", "versionEndExcluding": "10.0.19042.1889"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "FE64DCEC-7E9E-40EA-98C0-1BD90750B8F6", "versionEndExcluding": "10.0.19042.1889"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:arm64:*", "vulnerable": true, "matchCriteriaId": "CB0CF625-97ED-4985-AA28-9D3110AD9CFB", "versionEndExcluding": "10.0.19043.1889"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "3DF68BAC-5D09-4A1A-9971-CF49D7B4ACDD", "versionEndExcluding": "10.0.19043.1889"}, {"criteria": "cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "B5D590DA-9C8F-408D-8236-2F3F859BBF4B", "versionEndExcluding": "10.0.19043.1889"}, {"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:arm64:*", "vulnerable": true, "matchCriteriaId": "5A6DF122-390D-4736-9225-B06888C1940E", "versionEndExcluding": "10.0.22000.856"}, {"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "16091D00-29E1-47CD-8C9D-336B453337A8", "versionEndExcluding": "10.0.22000.856"}, {"criteria": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2B1C231-DE19-4B8F-A4AA-5B3A65276E46"}, {"criteria": "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB297C81-A488-4C19-A036-70EDC8E40C5F", "versionEndExcluding": "6.3.9600.20520"}, {"criteria": "cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1081F2CA-941D-4B7A-AC8D-A1223E2EDA1F", "versionEndExcluding": "6.3.9600.20520"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "2127D10C-B6F3-4C1D-B9AA-5D78513CC996"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "AB425562-C0A0-452E-AABE-F70522F15E1A"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_20h2:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84F9B6B1-4FEE-4D4B-B35F-B07822CCD669"}], "operator": "OR"}]}], "sourceIdentifier": "secure@microsoft.com"}