Description
Active Directory Certificate Services Elevation of Privilege Vulnerability
Reserved 2022-08-08 | Published 2022-10-11 | Updated 2025-01-02 | Assigner
microsoftHIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
Elevation of Privilege
Product status
10.0.17763.0 before 10.0.17763.3532
affected
10.0.17763.0 before 10.0.17763.3532
affected
10.0.20348.0 before 10.0.20348.1129
affected
10.0.14393.0 before 10.0.14393.5427
affected
10.0.14393.0 before 10.0.14393.5427
affected
6.0.6003.0 before 6.0.6003.21721
affected
6.0.6003.0 before 6.0.6003.21721
affected
6.0.6003.0 before 6.0.6003.21721
affected
6.1.7601.0 before 6.1.7601.26174
affected
6.1.7601.0 before 6.1.7601.26174
affected
6.2.9200.0 before 6.2.9200.23920
affected
6.2.9200.0 before 6.2.9200.23920
affected
6.3.9600.0 before 6.3.9600.20625
affected
6.3.9600.0 before 6.3.9600.20625
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37976 (Active Directory Certificate Services Elevation of Privilege Vulnerability) vendor-advisory
cve.org (CVE-2022-37976)
nvd.nist.gov (CVE-2022-37976)
Download JSON