{ "id": "CVE-2022-35757", "sourceIdentifier": "secure@microsoft.com", "published": "2023-05-31T19:15:17.123", "lastModified": "2023-06-07T19:59:53.807", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability" } ], "metrics": { "cvssMetricV31": [ { "source": "secure@microsoft.com", "type": "Primary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH" }, "exploitabilityScore": 1.3, "impactScore": 5.9 } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*", "versionEndExcluding": "10.0.17763.3287", "matchCriteriaId": "897654D8-62FE-4791-92FD-9BB107818CB7" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*", "versionEndExcluding": "10.0.17763.3287", "matchCriteriaId": "8782B6CE-955B-4C27-AC23-89712AB0164C" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*", "versionEndExcluding": "10.0.17763.3287", "matchCriteriaId": "AA7ABB50-E9E2-492D-8C0E-6BDA4AAD519C" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:arm64:*", "versionEndExcluding": "10.0.19042.1889", "matchCriteriaId": "A1086CAA-244A-4579-B0E6-8981C1A762F0" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x64:*", "versionEndExcluding": "10.0.19042.1889", "matchCriteriaId": "23E66457-1CE9-445E-8698-54A754FA9169" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x86:*", "versionEndExcluding": "10.0.19042.1889", "matchCriteriaId": "FE64DCEC-7E9E-40EA-98C0-1BD90750B8F6" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:arm64:*", "versionEndExcluding": "10.0.19043.1889", "matchCriteriaId": "CB0CF625-97ED-4985-AA28-9D3110AD9CFB" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:x64:*", "versionEndExcluding": "10.0.19043.1889", "matchCriteriaId": "3DF68BAC-5D09-4A1A-9971-CF49D7B4ACDD" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x64:*", "versionEndExcluding": "10.0.19043.1889", "matchCriteriaId": "A7074634-3E8A-46F3-A35B-A203020AFB3C" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x86:*", "versionEndExcluding": "10.0.19043.1889", "matchCriteriaId": "67CFC65F-841B-4F8B-981D-A5F7F3413E69" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:arm64:*", "versionEndExcluding": "10.0.22000.856", "matchCriteriaId": "5A6DF122-390D-4736-9225-B06888C1940E" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:x64:*", "versionEndExcluding": "10.0.22000.856", "matchCriteriaId": "16091D00-29E1-47CD-8C9D-336B453337A8" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_20h2:-:*:*:*:*:*:*:*", "matchCriteriaId": "84F9B6B1-4FEE-4D4B-B35F-B07822CCD669" } ] } ] } ], "references": [ { "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35757", "source": "secure@microsoft.com", "tags": [ "Patch", "Vendor Advisory" ] } ] }