CVE-2022-30147

Description

Windows Installer Elevation of Privilege Vulnerability.

Related CPE's

omicrosoftwindows_server_2008r2sp1****x64*

omicrosoftwindows_server_2012r2*******

omicrosoftwindows_101607*******

omicrosoftwindows_8.1-*******

omicrosoftwindows_server_2016-*******

omicrosoftwindows_server_2008-sp2******

omicrosoftwindows_7-sp1******

omicrosoftwindows_rt_8.1-*******

omicrosoftwindows_server_2012-*******

omicrosoftwindows_10-*******

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30147

PatchVendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

AccessComplexity

LOW

ConfidentialityImpact

COMPLETE

AvailabilityImpact

COMPLETE

IntegrityImpact

COMPLETE

BaseScore

7.199999809265137

VectorString

AV:L/AC:L/Au:N/C:C/I:C/A:C

Version

2.0

AccessVector

LOCAL

Authentication

NONE

Created by Yello
About Severity.io