CVE-2022-26923 vulnerability in Microsoft Products
Published on May 10, 2022
Known Exploited Vulnerability
This Microsoft Active Directory Domain Services Privilege Escalation Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. An authenticated user could manipulate attributes on computer accounts they own or manage, and acquire a certificate from Active Directory Certificate Services that would allow for privilege escalation to SYSTEM.
The following remediation steps are recommended / required by September 8, 2022: Apply updates per vendor instructions.
Vulnerability Analysis
CVE-2022-26923 can be exploited with network access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. It has an exploitability score of 2.8 out of four. The potential impact of an exploit of this vulnerability is considered to be very high.
Improper Certificate Validation
The software does not validate, or incorrectly validates, a certificate. When a certificate is invalid or malicious, it might allow an attacker to spoof a trusted entity by interfering in the communication path between the host and client. The software might connect to a malicious host while believing it is a trusted host, or the software might be deceived into accepting spoofed data that appears to originate from a trusted host.
Products Associated with CVE-2022-26923
You can be notified by stack.watch whenever vulnerabilities like CVE-2022-26923 are published in these products:
What versions are vulnerable to CVE-2022-26923?
- Microsoft Windows 10 Version - x64
- Microsoft Windows 10 Version 1607 x86
- Microsoft Windows Server 2012 Version r2
- Microsoft Windows Server 2016 Version -
- Microsoft Windows 10 Version - x86
- Microsoft Windows 10 Version 1607 x64
- Microsoft Windows 8.1 Version - x64
- Microsoft Windows Server 2019 Version -
- Microsoft Windows 10 Version 1809 x64
- Microsoft Windows 10 Version 1809 x86
- Microsoft Windows 10 Version 1809 arm64
- Microsoft Windows 8.1 Version - x86
- Microsoft Windows 10 Version 1909 x64
- Microsoft Windows 10 Version 1909 arm64
- Microsoft Windows 10 Version 1909 x86
- Microsoft Windows 10 Version 20h2 x64
- Microsoft Windows 10 Version 20h2 arm64
- Microsoft Windows 10 Version 20h2 x86
- Microsoft Windows 10 Version 21h1 x64
- Microsoft Windows 11 Version - arm64
- Microsoft Windows 11 Version - x64
- Microsoft Windows Server 2022
- Microsoft Windows 10 Version 21h1 arm64
- Microsoft Windows 10 Version 21h1 x86
- Microsoft Windows 10 Version 21h2 arm64
- Microsoft Windows 10 Version 21h2 x64
- Microsoft Windows 10 Version 21h2 x86