microsoft windows-10 CVE-2022-26923 vulnerability in Microsoft Products
Published on May 10, 2022

product logo product logo
Active Directory Domain Services Elevation of Privilege Vulnerability

Vendor Advisory NVD

Known Exploited Vulnerability

This Microsoft Active Directory Domain Services Privilege Escalation Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. An authenticated user could manipulate attributes on computer accounts they own or manage, and acquire a certificate from Active Directory Certificate Services that would allow for privilege escalation to SYSTEM.

The following remediation steps are recommended / required by September 8, 2022: Apply updates per vendor instructions.

Vulnerability Analysis

CVE-2022-26923 can be exploited with network access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. It has an exploitability score of 2.8 out of four. The potential impact of an exploit of this vulnerability is considered to be very high.

Improper Certificate Validation

The software does not validate, or incorrectly validates, a certificate. When a certificate is invalid or malicious, it might allow an attacker to spoof a trusted entity by interfering in the communication path between the host and client. The software might connect to a malicious host while believing it is a trusted host, or the software might be deceived into accepting spoofed data that appears to originate from a trusted host.


Products Associated with CVE-2022-26923

You can be notified by stack.watch whenever vulnerabilities like CVE-2022-26923 are published in these products:

Microsoft Windows 10
 
Microsoft Windows Server 2012
 
Microsoft Windows Server 2016
 
Microsoft Windows 8.1
 
Microsoft Windows Server 2019
 
Microsoft Windows 11
 
Microsoft Windows Server 2022
 

What versions are vulnerable to CVE-2022-26923?