CVE-2022-29150 - Vulnerability Details

Vendors	Products
Microsoft	Windows Server Windows Server 2012 Windows Server 2016 Windows Server 2019 Windows Server 2022

Link	Providers
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29150
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29150

Type	Values Removed	Values Added
CPEs	cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23714::::::x64: cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20365::::::x64: cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20371::::::x64: cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.5125:::::::* cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2928:::::::* cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.707:::::::* cpe:2.3:o:microsoft:windows_server_20H2:10.0.19042.1706:::::::*
Vendors & Products	Microsoft windows Server 2012 R2 Microsoft windows Server 20h2
References		https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29150

Show plain JSON

{"containers": {"cna": {"title": "Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability", "datePublic": "2022-05-10T07:00:00+00:00", "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.17763.0", "versionEndExcluding": "10.0.17763.2928"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.17763.0", "versionEndExcluding": "10.0.17763.2928"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.20348.0", "versionEndExcluding": "10.0.20348.707"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.0", "versionEndExcluding": "10.0.19042.1706"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.14393.0", "versionEndExcluding": "10.0.14393.5125"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*", "versionStartIncluding": "10.0.14393.0", "versionEndExcluding": "10.0.14393.5125"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*", "versionStartIncluding": "6.2.9200.0", "versionEndExcluding": "6.2.9200.23714"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*", "versionStartIncluding": "6.2.9200.0", "versionEndExcluding": "6.2.9200.23714"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*", "versionStartIncluding": "6.3.9600.0", "versionEndExcluding": "6.3.9600.20371"}, {"vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*", "versionStartIncluding": "6.3.9600.0", "versionEndExcluding": "6.3.9600.20371"}]}]}], "affected": [{"vendor": "Microsoft", "product": "Windows Server 2019", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.17763.0", "lessThan": "10.0.17763.2928", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2019 (Server Core installation)", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.17763.0", "lessThan": "10.0.17763.2928", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2022", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.20348.0", "lessThan": "10.0.20348.707", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server version 20H2", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.0", "lessThan": "10.0.19042.1706", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2016", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.14393.0", "lessThan": "10.0.14393.5125", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2016 (Server Core installation)", "platforms": ["x64-based Systems"], "versions": [{"version": "10.0.14393.0", "lessThan": "10.0.14393.5125", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2012", "platforms": ["x64-based Systems"], "versions": [{"version": "6.2.9200.0", "lessThan": "6.2.9200.23714", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2012 (Server Core installation)", "platforms": ["x64-based Systems"], "versions": [{"version": "6.2.9200.0", "lessThan": "6.2.9200.23714", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2012 R2", "platforms": ["x64-based Systems"], "versions": [{"version": "6.3.9600.0", "lessThan": "6.3.9600.20371", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Windows Server 2012 R2 (Server Core installation)", "platforms": ["x64-based Systems"], "versions": [{"version": "6.3.9600.0", "lessThan": "6.3.9600.20371", "versionType": "custom", "status": "affected"}]}], "descriptions": [{"value": "Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability", "lang": "en-US"}], "problemTypes": [{"descriptions": [{"description": "Elevation of Privilege", "lang": "en-US", "type": "Impact"}]}], "providerMetadata": {"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft", "dateUpdated": "2025-01-02T18:58:20.892Z"}, "references": [{"name": "Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability", "tags": ["vendor-advisory"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29150"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "baseSeverity": "HIGH", "baseScore": 7, "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C"}}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T06:10:59.430Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29150"}]}]}, "cveMetadata": {"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "assignerShortName": "microsoft", "cveId": "CVE-2022-29150", "datePublished": "2022-05-10T20:34:59", "dateReserved": "2022-04-12T00:00:00", "dateUpdated": "2025-01-02T18:58:20.892Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

title : Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability (string)

datePublic : 2022-05-10T07:00:00+00:00 (string)

cpeApplicability : [ »

0 : { »

nodes : [ »

0 : { »

operator : OR (string)

negate : false (boolean)

cpeMatch : [ »

0 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.17763.0 (string)

versionEndExcluding : 10.0.17763.2928 (string)

}

1 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.17763.0 (string)

versionEndExcluding : 10.0.17763.2928 (string)

}

2 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.20348.0 (string)

versionEndExcluding : 10.0.20348.707 (string)

}

3 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.0 (string)

versionEndExcluding : 10.0.19042.1706 (string)

}

4 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.14393.0 (string)

versionEndExcluding : 10.0.14393.5125 (string)

}

5 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 10.0.14393.0 (string)

versionEndExcluding : 10.0.14393.5125 (string)

}

6 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:* (string)

versionStartIncluding : 6.2.9200.0 (string)

versionEndExcluding : 6.2.9200.23714 (string)

}

7 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:* (string)

versionStartIncluding : 6.2.9200.0 (string)

versionEndExcluding : 6.2.9200.23714 (string)

}

8 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:* (string)

versionStartIncluding : 6.3.9600.0 (string)

versionEndExcluding : 6.3.9600.20371 (string)

}

9 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:* (string)

versionStartIncluding : 6.3.9600.0 (string)

versionEndExcluding : 6.3.9600.20371 (string)

}

]

}

]

}

]

affected : [ »

0 : { »

vendor : Microsoft (string)

product : Windows Server 2019 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.17763.0 (string)

lessThan : 10.0.17763.2928 (string)

versionType : custom (string)

status : affected (string)

}

]

}

1 : { »

vendor : Microsoft (string)

product : Windows Server 2019 (Server Core installation) (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.17763.0 (string)

lessThan : 10.0.17763.2928 (string)

versionType : custom (string)

status : affected (string)

}

]

}

2 : { »

vendor : Microsoft (string)

product : Windows Server 2022 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.20348.0 (string)

lessThan : 10.0.20348.707 (string)

versionType : custom (string)

status : affected (string)

}

]

}

3 : { »

vendor : Microsoft (string)

product : Windows Server version 20H2 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.0 (string)

lessThan : 10.0.19042.1706 (string)

versionType : custom (string)

status : affected (string)

}

]

}

4 : { »

vendor : Microsoft (string)

product : Windows Server 2016 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.14393.0 (string)

lessThan : 10.0.14393.5125 (string)

versionType : custom (string)

status : affected (string)

}

]

}

5 : { »

vendor : Microsoft (string)

product : Windows Server 2016 (Server Core installation) (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 10.0.14393.0 (string)

lessThan : 10.0.14393.5125 (string)

versionType : custom (string)

status : affected (string)

}

]

}

6 : { »

vendor : Microsoft (string)

product : Windows Server 2012 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 6.2.9200.0 (string)

lessThan : 6.2.9200.23714 (string)

versionType : custom (string)

status : affected (string)

}

]

}

7 : { »

vendor : Microsoft (string)

product : Windows Server 2012 (Server Core installation) (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 6.2.9200.0 (string)

lessThan : 6.2.9200.23714 (string)

versionType : custom (string)

status : affected (string)

}

]

}

8 : { »

vendor : Microsoft (string)

product : Windows Server 2012 R2 (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 6.3.9600.0 (string)

lessThan : 6.3.9600.20371 (string)

versionType : custom (string)

status : affected (string)

}

]

}

9 : { »

vendor : Microsoft (string)

product : Windows Server 2012 R2 (Server Core installation) (string)

platforms : [ »

0 : x64-based Systems (string)

]

versions : [ »

0 : { »

version : 6.3.9600.0 (string)

lessThan : 6.3.9600.20371 (string)

versionType : custom (string)

status : affected (string)

}

]

}

]

descriptions : [ »

0 : { »

value : Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability (string)

lang : en-US (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : Elevation of Privilege (string)

lang : en-US (string)

type : Impact (string)

}

]

}

]

providerMetadata : { »

orgId : f38d906d-7342-40ea-92c1-6c4a2c6478c8 (string)

shortName : microsoft (string)

dateUpdated : 2025-01-02T18:58:20.892Z (string)

}

references : [ »

0 : { »

name : Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability (string)

tags : [ »

0 : vendor-advisory (string)

]

url : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29150 (string)

}

]

metrics : [ »

0 : { »

format : CVSS (string)

scenarios : [ »

0 : { »

lang : en-US (string)

value : GENERAL (string)

}

]

cvssV3_1 : { »

version : 3.1 (string)

baseSeverity : HIGH (string)

baseScore : 7 (number)

vectorString : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T06:10:59.430Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_MISC (string)

1 : x_transferred (string)

]

url : https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29150 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : f38d906d-7342-40ea-92c1-6c4a2c6478c8 (string)

assignerShortName : microsoft (string)

cveId : CVE-2022-29150 (string)

datePublished : 2022-05-10T20:34:59 (string)

dateReserved : 2022-04-12T00:00:00 (string)

dateUpdated : 2025-01-02T18:58:20.892Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_server:20h2:*:*:*:*:*:*:*", "matchCriteriaId": "1EAF6DBA-6E3A-4854-BFBF-B5DC36CE5929", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability"}, {"lang": "es", "value": "Una vulnerabilidad de Elevaci\u00f3n de Privilegios en Windows Cluster Shared Volume (CSV). Este ID de CVE es diferente de CVE-2022-29135, CVE-2022-29151"}], "id": "CVE-2022-29150", "lastModified": "2025-01-02T19:16:13.350", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 5.9, "source": "secure@microsoft.com", "type": "Secondary"}]}, "published": "2022-05-10T21:15:13.183", "references": [{"source": "secure@microsoft.com", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29150"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29150"}], "sourceIdentifier": "secure@microsoft.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:microsoft:windows_server:20h2:*:*:*:*:*:*:* (string)

matchCriteriaId : 1EAF6DBA-6E3A-4854-BFBF-B5DC36CE5929 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* (string)

matchCriteriaId : A7DF96F8-BA6A-4780-9CA3-F719B3F81074 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* (string)

matchCriteriaId : DB18C4CE-5917-401E-ACF7-2747084FD36E (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:* (string)

matchCriteriaId : DB79EE26-FC32-417D-A49C-A1A63165A968 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 821614DD-37DD-44E2-A8A4-FE8D23A33C3C (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability (string)

}

1 : { »

lang : es (string)

value : Una vulnerabilidad de Elevación de Privilegios en Windows Cluster Shared Volume (CSV). Este ID de CVE es diferente de CVE-2022-29135, CVE-2022-29151 (string)

}

]

id : CVE-2022-29150 (string)

lastModified : 2025-01-02T19:16:13.350 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : MEDIUM (string)

accessVector : LOCAL (string)

authentication : NONE (string)

availabilityImpact : COMPLETE (string)

baseScore : 6.9 (number)

confidentialityImpact : COMPLETE (string)

integrityImpact : COMPLETE (string)

vectorString : AV:L/AC:M/Au:N/C:C/I:C/A:C (string)

version : 2.0 (string)

}

exploitabilityScore : 3.4 (number)

impactScore : 10 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : HIGH (string)

attackVector : LOCAL (string)

availabilityImpact : HIGH (string)

baseScore : 7 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 1 (number)

impactScore : 5.9 (number)

source : secure@microsoft.com (string)

type : Secondary (string)

}

]

}

published : 2022-05-10T21:15:13.183 (string)

references : [ »

0 : { »

source : secure@microsoft.com (string)

url : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29150 (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29150 (string)

}

]

sourceIdentifier : secure@microsoft.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-noinfo (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object