CVE-2022-26934

EUVD-2022-31479
Windows Graphics Component Information Disclosure Vulnerability
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
microsoftCNA
6.5 MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 94%
Affected Products (NVD)
VendorProductVersion
microsoft365_apps
-
microsoftwindows_10_1507
𝑥
< 10.0.10240.19297
microsoftwindows_10_1507
𝑥
< 10.0.10240.19297
microsoftwindows_10_1607
𝑥
< 10.0.14393.5125
microsoftwindows_10_1607
𝑥
< 10.0.14393.5125
microsoftwindows_10_1809
𝑥
< 10.0.17763.2928
microsoftwindows_10_1809
10.0.17763.2928
microsoftwindows_10_1909
𝑥
< 10.0.18363.2274
microsoftwindows_10_20h2
𝑥
< 10.0.19042.1706
microsoftwindows_10_21h1
𝑥
< 10.0.19043.1706
microsoftwindows_10_21h2
𝑥
< 10.0.19044.1706
microsoftwindows_11_21h2
𝑥
< 10.0.22000.675
microsoftwindows_7
-
microsoftwindows_8.1
-
microsoftwindows_rt_8.1
-
microsoftwindows_server_2012
-
microsoftwindows_server_2016
-
microsoftwindows_server_2019
-
microsoftwindows_server_2022
-
microsoft365_apps
𝑥
< 2206
microsoftoffice
𝑥
< 2206
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
(x64, x86)
KB5013963
1607 (x64, x86)
KB5013952
1809 (arm64, x64, x86)
KB5013941
1909 (arm64, x64, x86)
KB5013945
20H2 (arm64, x86)
KB5013942
21H1 (arm64, x64, x86)
KB5013942
21H2 (arm64, x64, x86)
KB5013942
Windows 11
21H2 (arm64, x64)
KB5013943
Windows 7
Service Pack 1 (x64, x86)
KB5014012
Windows 8.1
(x64, x86)
KB5014011
Windows RT 8.1
All
KB5014025
Windows Server
20H2 Server Core
KB5013942
Windows Server 2008
Service Pack 2 (x64, x86)
KB5014010
Service Pack 2 Server Core (x64, x86)
KB5014010
Windows Server 2008 R2
Service Pack 1 (x64)
KB5014012
Service Pack 1 Server Core (x64)
KB5014012
Windows Server 2012
Server Core
KB5014018
Standard
KB5014018
Windows Server 2012 R2
Server Core
KB5014011
Standard
KB5014011
Windows Server 2016
Server Core
KB5013952
Standard
KB5013952
Windows Server 2019
Server Core
KB5013941
Standard
KB5013941
Windows Server 2022
Server Core
KB5013944
Standard
KB5013944
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26934
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26934