CVE-2022-24537 - Vulnerability Details

Vendors	Products
Microsoft	Windows 10 Windows 11 Windows Server Windows Server 2016 Windows Server 2019 Windows Server 2022

Link	Providers
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537

Type	Values Removed	Values Added
CPEs	cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.5066::::::x64: cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2803::::::x64: cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.2212::::::x64: cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1645::::::x64: cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.1645::::::x64: cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.613::::::x64: cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5066:::::::* cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2803:::::::* cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.643:::::::* cpe:2.3:o:microsoft:windows_server_20H2:10.0.19042.1645:::::::*
Vendors & Products	Microsoft windows 10 1607 Microsoft windows 10 1809 Microsoft windows 10 1909 Microsoft windows 10 21h1 Microsoft windows 10 21h2 Microsoft windows 11 21h2 Microsoft windows Server 20h2

Show plain JSON

{"containers": {"cna": {"title": "Windows Hyper-V Remote Code Execution Vulnerability", "datePublic": "2022-04-12T08:00:00+00:00", "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*", "versionStartIncluding": "10.0.17763.0", "versionEndExcluding": "10.0.17763.2803"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.17763.0", "versionEndExcluding": "10.0.17763.2803"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.17763.0", "versionEndExcluding": "10.0.17763.2803"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*", "versionStartIncluding": "10.0.0", "versionEndExcluding": "10.0.18363.2212"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_21H1:*:*:*:*:*:*:x64:*", "versionStartIncluding": "10.0.0", "versionEndExcluding": "10.0.19043.1645"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.20348.0", "versionEndExcluding": "10.0.20348.643"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.0", "versionEndExcluding": "10.0.19042.1645"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*", "versionStartIncluding": "10.0.0", "versionEndExcluding": "10.0.22000.613"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x64:*", "versionStartIncluding": "10.0.19043.0", "versionEndExcluding": "10.0.19044.1645"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*", "versionStartIncluding": "10.0.14393.0", "versionEndExcluding": "10.0.14393.5066"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.14393.0", "versionEndExcluding": "10.0.14393.5066"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.14393.0", "versionEndExcluding": "10.0.14393.5066"}]}]}], "affected": [{"vendor": "Microsoft", "product": "Windows 10 Version 1809", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.17763.0", "lessThan": "10.0.17763.2803", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2019", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.17763.0", "lessThan": "10.0.17763.2803", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2019 (Server Core installation)", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.17763.0", "lessThan": "10.0.17763.2803", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows 10 Version 1909", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.0", "lessThan": "10.0.18363.2212", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows 10 Version 21H1", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.0", "lessThan": "10.0.19043.1645", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2022", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.20348.0", "lessThan": "10.0.20348.643", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server version 20H2", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.0", "lessThan": "10.0.19042.1645", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows 11 version 21H2", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.0", "lessThan": "10.0.22000.613", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows 10 Version 21H2", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.19043.0", "lessThan": "10.0.19044.1645", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows 10 Version 1607", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.14393.0", "lessThan": "10.0.14393.5066", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2016", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.14393.0", "lessThan": "10.0.14393.5066", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2016 (Server Core installation)", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.14393.0", "lessThan": "10.0.14393.5066", "versionType": "custom", "status": "affected"}]}], "descriptions": [{"value": "Windows Hyper-V Remote Code Execution Vulnerability", "lang": "en-US"}], "problemTypes": [{"descriptions": [{"description": "Remote Code Execution", "lang": "en-US", "type": "Impact"}]}], "providerMetadata": {"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft", "dateUpdated": "2025-01-02T18:51:50.603Z"}, "references": [{"name": "Windows Hyper-V Remote Code Execution Vulnerability", "tags": ["vendor-advisory"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "baseSeverity": "HIGH", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C"}}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T04:13:56.130Z"}, "title": "CVE Program Container", "references": [{"name": "Windows Hyper-V Remote Code Execution Vulnerability", "tags": ["vendor-advisory", "x_transferred"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537"}]}]}, "cveMetadata": {"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "assignerShortName": "microsoft", "cveId": "CVE-2022-24537", "datePublished": "2022-04-15T19:03:55", "dateReserved": "2022-02-05T00:00:00", "dateUpdated": "2025-01-02T18:51:50.603Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

title : Windows Hyper-V Remote Code Execution Vulnerability (string)

datePublic : 2022-04-12T08:00:00+00:00 (string)

cpeApplicability : [ »

0 : { »

nodes : [ »

0 : { »

operator : OR (string)

negate : false (boolean)

cpeMatch : [ »

0 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:* (string)

versionStartIncluding : 10.0.17763.0 (string)

versionEndExcluding : 10.0.17763.2803 (string)

}

1 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.17763.0 (string)

versionEndExcluding : 10.0.17763.2803 (string)

}

2 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.17763.0 (string)

versionEndExcluding : 10.0.17763.2803 (string)

}

3 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:* (string)

versionStartIncluding : 10.0.0 (string)

versionEndExcluding : 10.0.18363.2212 (string)

}

4 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_10_21H1:*:*:*:*:*:*:x64:* (string)

versionStartIncluding : 10.0.0 (string)

versionEndExcluding : 10.0.19043.1645 (string)

}

5 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.20348.0 (string)

versionEndExcluding : 10.0.20348.643 (string)

}

6 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.0 (string)

versionEndExcluding : 10.0.19042.1645 (string)

}

7 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:* (string)

versionStartIncluding : 10.0.0 (string)

versionEndExcluding : 10.0.22000.613 (string)

}

8 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x64:* (string)

versionStartIncluding : 10.0.19043.0 (string)

versionEndExcluding : 10.0.19044.1645 (string)

}

9 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:* (string)

versionStartIncluding : 10.0.14393.0 (string)

versionEndExcluding : 10.0.14393.5066 (string)

}

10 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.14393.0 (string)

versionEndExcluding : 10.0.14393.5066 (string)

}

11 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.14393.0 (string)

versionEndExcluding : 10.0.14393.5066 (string)

}

]

}

]

}

]

affected : [ »

0 : { »

vendor : Microsoft (string)

product : Windows 10 Version 1809 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.17763.0 (string)

lessThan : 10.0.17763.2803 (string)

versionType : custom (string)

status : affected (string)

}

]

}

1 : { »

vendor : Microsoft (string)

product : Windows Server 2019 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.17763.0 (string)

lessThan : 10.0.17763.2803 (string)

versionType : custom (string)

status : affected (string)

}

]

}

2 : { »

vendor : Microsoft (string)

product : Windows Server 2019 (Server Core installation) (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.17763.0 (string)

lessThan : 10.0.17763.2803 (string)

versionType : custom (string)

status : affected (string)

}

]

}

3 : { »

vendor : Microsoft (string)

product : Windows 10 Version 1909 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.0 (string)

lessThan : 10.0.18363.2212 (string)

versionType : custom (string)

status : affected (string)

}

]

}

4 : { »

vendor : Microsoft (string)

product : Windows 10 Version 21H1 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.0 (string)

lessThan : 10.0.19043.1645 (string)

versionType : custom (string)

status : affected (string)

}

]

}

5 : { »

vendor : Microsoft (string)

product : Windows Server 2022 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.20348.0 (string)

lessThan : 10.0.20348.643 (string)

versionType : custom (string)

status : affected (string)

}

]

}

6 : { »

vendor : Microsoft (string)

product : Windows Server version 20H2 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.0 (string)

lessThan : 10.0.19042.1645 (string)

versionType : custom (string)

status : affected (string)

}

]

}

7 : { »

vendor : Microsoft (string)

product : Windows 11 version 21H2 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.0 (string)

lessThan : 10.0.22000.613 (string)

versionType : custom (string)

status : affected (string)

}

]

}

8 : { »

vendor : Microsoft (string)

product : Windows 10 Version 21H2 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.19043.0 (string)

lessThan : 10.0.19044.1645 (string)

versionType : custom (string)

status : affected (string)

}

]

}

9 : { »

vendor : Microsoft (string)

product : Windows 10 Version 1607 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.14393.0 (string)

lessThan : 10.0.14393.5066 (string)

versionType : custom (string)

status : affected (string)

}

]

}

10 : { »

vendor : Microsoft (string)

product : Windows Server 2016 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.14393.0 (string)

lessThan : 10.0.14393.5066 (string)

versionType : custom (string)

status : affected (string)

}

]

}

11 : { »

vendor : Microsoft (string)

product : Windows Server 2016 (Server Core installation) (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.14393.0 (string)

lessThan : 10.0.14393.5066 (string)

versionType : custom (string)

status : affected (string)

}

]

}

]

descriptions : [ »

0 : { »

value : Windows Hyper-V Remote Code Execution Vulnerability (string)

lang : en-US (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : Remote Code Execution (string)

lang : en-US (string)

type : Impact (string)

}

]

}

]

providerMetadata : { »

orgId : f38d906d-7342-40ea-92c1-6c4a2c6478c8 (string)

shortName : microsoft (string)

dateUpdated : 2025-01-02T18:51:50.603Z (string)

}

references : [ »

0 : { »

name : Windows Hyper-V Remote Code Execution Vulnerability (string)

tags : [ »

0 : vendor-advisory (string)

]

url : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537 (string)

}

]

metrics : [ »

0 : { »

format : CVSS (string)

scenarios : [ »

0 : { »

lang : en-US (string)

value : GENERAL (string)

}

]

cvssV3_1 : { »

version : 3.1 (string)

baseSeverity : HIGH (string)

baseScore : 7.8 (number)

vectorString : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T04:13:56.130Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : Windows Hyper-V Remote Code Execution Vulnerability (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_transferred (string)

]

url : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : f38d906d-7342-40ea-92c1-6c4a2c6478c8 (string)

assignerShortName : microsoft (string)

cveId : CVE-2022-24537 (string)

datePublished : 2022-04-15T19:03:55 (string)

dateReserved : 2022-02-05T00:00:00 (string)

dateUpdated : 2025-01-02T18:51:50.603Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:x64:*", "matchCriteriaId": "21074553-EDF2-468D-8E79-C39851B5BC79", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_10:21h1:*:*:*:*:*:x64:*", "matchCriteriaId": "F8C238FA-B20F-40A5-B861-A8295858F4BE", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_10:21h2:*:*:*:*:*:x64:*", "matchCriteriaId": "77E07B96-EAAA-4DD6-9172-0DE98A36726F", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:x64:*", "matchCriteriaId": "897A48D7-FCA1-4560-AFBB-718AF19BA3A2", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:x64:*", "matchCriteriaId": "6CF580BA-6938-40F6-9D86-F43044A6BACA", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:x64:*", "matchCriteriaId": "61F0792D-7587-4297-8EE7-D4DC3A30EE84", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:x64:*", "matchCriteriaId": "5D7F7DDB-440E-42CD-82F4-B2C13F3CC462", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server:20h2:*:*:*:*:*:*:*", "matchCriteriaId": "1EAF6DBA-6E3A-4854-BFBF-B5DC36CE5929", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Windows Hyper-V Remote Code Execution Vulnerability"}, {"lang": "es", "value": "Una vulnerabilidad de Ejecuci\u00f3n de C\u00f3digo Remota en Windows Hyper-V. Este ID de CVE es diferente de CVE-2022-22008, CVE-2022-22009, CVE-2022-23257"}], "id": "CVE-2022-24537", "lastModified": "2024-11-21T06:50:37.290", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.1, "impactScore": 6.0, "source": "secure@microsoft.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.1, "impactScore": 6.0, "source": "nvd@nist.gov", "type": "Secondary"}]}, "published": "2022-04-15T19:15:11.500", "references": [{"source": "secure@microsoft.com", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537"}], "sourceIdentifier": "secure@microsoft.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-362"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:x64:* (string)

matchCriteriaId : 21074553-EDF2-468D-8E79-C39851B5BC79 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:microsoft:windows_10:21h1:*:*:*:*:*:x64:* (string)

matchCriteriaId : F8C238FA-B20F-40A5-B861-A8295858F4BE (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:microsoft:windows_10:21h2:*:*:*:*:*:x64:* (string)

matchCriteriaId : 77E07B96-EAAA-4DD6-9172-0DE98A36726F (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:x64:* (string)

matchCriteriaId : 897A48D7-FCA1-4560-AFBB-718AF19BA3A2 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:x64:* (string)

matchCriteriaId : 6CF580BA-6938-40F6-9D86-F43044A6BACA (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:x64:* (string)

matchCriteriaId : 61F0792D-7587-4297-8EE7-D4DC3A30EE84 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:x64:* (string)

matchCriteriaId : 5D7F7DDB-440E-42CD-82F4-B2C13F3CC462 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:microsoft:windows_server:20h2:*:*:*:*:*:*:* (string)

matchCriteriaId : 1EAF6DBA-6E3A-4854-BFBF-B5DC36CE5929 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:* (string)

matchCriteriaId : DB79EE26-FC32-417D-A49C-A1A63165A968 (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 821614DD-37DD-44E2-A8A4-FE8D23A33C3C (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : Windows Hyper-V Remote Code Execution Vulnerability (string)

}

1 : { »

lang : es (string)

value : Una vulnerabilidad de Ejecución de Código Remota en Windows Hyper-V. Este ID de CVE es diferente de CVE-2022-22008, CVE-2022-22009, CVE-2022-23257 (string)

}

]

id : CVE-2022-24537 (string)

lastModified : 2024-11-21T06:50:37.290 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : MEDIUM (string)

accessVector : LOCAL (string)

authentication : NONE (string)

availabilityImpact : COMPLETE (string)

baseScore : 6.9 (number)

confidentialityImpact : COMPLETE (string)

integrityImpact : COMPLETE (string)

vectorString : AV:L/AC:M/Au:N/C:C/I:C/A:C (string)

version : 2.0 (string)

}

exploitabilityScore : 3.4 (number)

impactScore : 10 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : HIGH (string)

attackVector : LOCAL (string)

availabilityImpact : HIGH (string)

baseScore : 7.8 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : LOW (string)

scope : CHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 1.1 (number)

impactScore : 6 (number)

source : secure@microsoft.com (string)

type : Secondary (string)

}

1 : { »

cvssData : { »

attackComplexity : HIGH (string)

attackVector : LOCAL (string)

availabilityImpact : HIGH (string)

baseScore : 7.8 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : LOW (string)

scope : CHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 1.1 (number)

impactScore : 6 (number)

source : nvd@nist.gov (string)

type : Secondary (string)

}

]

}

published : 2022-04-15T19:15:11.500 (string)

references : [ »

0 : { »

source : secure@microsoft.com (string)

url : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537 (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24537 (string)

}

]

sourceIdentifier : secure@microsoft.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-362 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object