CVE-2022-30214

EUVD-2022-35420
Windows DNS Server Remote Code Execution Vulnerability
Race Condition
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.6 MEDIUM
NETWORK
HIGH
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
microsoftCNA
6.6 MEDIUM
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_server_2016
-
microsoftwindows_server_2019
-
microsoftwindows_server_2022
-
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows Server
20H2 Server Core
KB5015807
Windows Server 2016
Server Core
KB5015808
Standard
KB5015808
Windows Server 2019
Server Core
KB5015811
Standard
KB5015811
Windows Server 2022
Server Core
KB5015827
Standard
KB5015827
Common Weakness Enumeration
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30214
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30214