Description
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
Reserved 2022-02-05 | Published 2022-10-11 | Updated 2025-01-02 | Assigner
microsoftHIGH: 8.1CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
Remote Code Execution
Product status
10.0.17763.0 before 10.0.17763.3532
affected
10.0.0 before 10.0.17763.3532
affected
10.0.17763.0 before 10.0.17763.3532
affected
10.0.17763.0 before 10.0.17763.3532
affected
10.0.0 before 10.0.19043.2130
affected
10.0.20348.0 before 10.0.20348.1129
affected
10.0.0 before 10.0.19042.2130
affected
10.0.0 before 10.0.22000.1098
affected
10.0.19043.0 before 10.0.19044.2130
affected
10.0.22621.0 before 10.0.22621.674
affected
10.0.10240.0 before 10.0.10240.19507
affected
10.0.14393.0 before 10.0.14393.5427
affected
10.0.14393.0 before 10.0.14393.5427
affected
10.0.14393.0 before 10.0.14393.5427
affected
6.1.0 before 6.1.7601.26174
affected
6.1.0 before 6.1.7601.26174
affected
6.3.0 before 6.3.9600.20625
affected
6.0.6003.0 before 6.0.6003.21721
affected
6.0.6003.0 before 6.0.6003.21721
affected
6.0.6003.0 before 6.0.6003.21721
affected
6.1.7601.0 before 6.1.7601.26174
affected
6.1.7601.0 before 6.1.7601.26174
affected
6.2.9200.0 before 6.2.9200.23920
affected
6.2.9200.0 before 6.2.9200.23920
affected
6.3.9600.0 before 6.3.9600.20625
affected
6.3.9600.0 before 6.3.9600.20625
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24504 (Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability) vendor-advisory
cve.org (CVE-2022-24504)
nvd.nist.gov (CVE-2022-24504)
Download JSON
Subscribe to our newsletter to learn more about our work.