CVE-2022-38028 | THREATINT

Description

Windows Print Spooler Elevation of Privilege Vulnerability

Reserved 2022-08-08 | Published 2022-10-11 | Updated 2025-01-02 | Assigner microsoft

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

CISA Known Exploited Vulnerability

Date added 2024-04-23 | Due date 2024-05-14

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Problem types

Elevation of Privilege

Product status

10.0.17763.0 before 10.0.17763.3532

affected

10.0.0 before 10.0.17763.3532

affected

10.0.17763.0 before 10.0.17763.3532

affected

10.0.17763.0 before 10.0.17763.3532

affected

10.0.0 before 10.0.19043.2130

affected

10.0.20348.0 before 10.0.20348.1129

affected

10.0.0 before 10.0.19042.2130

affected

10.0.0 before 10.0.22000.1098

affected

10.0.19043.0 before 10.0.19044.2130

affected

10.0.22621.0 before 10.0.22621.674

affected

10.0.10240.0 before 10.0.10240.19507

affected

10.0.14393.0 before 10.0.14393.5427

affected

10.0.14393.0 before 10.0.14393.5427

affected

10.0.14393.0 before 10.0.14393.5427

affected

6.3.0 before 6.3.9600.20625

affected

6.2.9200.0 before 6.2.9200.23920

affected

6.2.9200.0 before 6.2.9200.23920

affected

6.3.9600.0 before 6.3.9600.20625

affected

6.3.9600.0 before 6.3.9600.20625

affected

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38028 (Windows Print Spooler Elevation of Privilege Vulnerability) vendor-advisory

cve.org (CVE-2022-38028)

nvd.nist.gov (CVE-2022-38028)

Download JSON