Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2022-21971

Published: 09/02/2022 Updated: 08/08/2023
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 829
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Microsoft

Vulnerability Summary

Windows Runtime Remote Code Execution Vulnerability

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft windows server 2019 -

microsoft windows 10 1809

microsoft windows 10 1909

microsoft windows 10 20h2

microsoft windows 10 21h1

microsoft windows 11 -

microsoft windows server 20h2

microsoft windows server 2022

microsoft windows 10 21h2

Github Repositories

https://github.com/tufanturhan/CVE-2022-21971-Windows-Runtime-RCE

CVE-2022-21971: Uninitialized pointer free in prauthproviders Root-cause The WapAuthProvider::CreateI

https://github.com/J0hnbX/2022-21971

CVE-2022-21971: Uninitialized pointer free in prauthproviders Root-cause The WapAuthProvider::CreateI

https://github.com/0vercl0k/CVE-2022-21971

PoC for CVE-2022-21971 "Windows Runtime Remote Code Execution Vulnerability"

CVE-2022-21971: Uninitialized pointer free in prauthproviders Root-cause The WapAuthProvider::CreateI

https://github.com/Malwareman007/CVE-2022-21971

POC Of CVE-2022-21971

CVE-2022-21971: Uninitialized pointer free in prauthproviders Root-cause The WapAuthProvider::CreateI

References

CWE-824https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21971https://nvd.nist.govhttps://github.com/tufanturhan/CVE-2022-21971-Windows-Runtime-RCEhttps://github.com/0vercl0k/CVE-2022-21971
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook