CVE-2022-44698

EUVD-2022-47632
Windows SmartScreen Security Feature Bypass Vulnerability
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.4 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
microsoftCNA
5.4 MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L/E:F/RL:O/RC:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_10_1607
𝑥
< 10.0.14393.5582
microsoftwindows_10_1809
𝑥
< 10.0.17763.3770
microsoftwindows_10_20h2
𝑥
< 10.0.19042.2364
microsoftwindows_10_21h1
𝑥
< 10.0.19043.2364
microsoftwindows_10_21h2
𝑥
< 10.0.19044.2364
microsoftwindows_10_22h2
𝑥
< 10.0.19045.2364
microsoftwindows_11_21h2
𝑥
< 10.0.22000.1335
microsoftwindows_server_2016
𝑥
< 10.0.14393.5582
microsoftwindows_server_2019
𝑥
< 10.0.17763.3770
microsoftwindows_server_2022
𝑥
< 10.0.20348.1366
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
1607 (x64, x86)
KB5021235
1809 (arm64, x64, x86)
KB5021237
20H2 (arm64, x86)
KB5021233
21H1 (arm64, x64, x86)
KB5021233
21H2 (arm64, x64, x86)
KB5021233
22H2 (arm64, x64, x86)
KB5021233
Windows 11
21H2 (arm64, x64)
KB5021234
Windows Server 2016
Standard
KB5021235
Windows Server 2019
Standard
KB5021237
Windows Server 2022
Standard
KB5021249
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44698
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44698
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-44698