Description
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
Reserved 2022-07-13 | Published 2023-05-31 | Updated 2024-10-02 | Assigner
microsoftHIGH: 8.1CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
Remote Code Execution
Product status
10.0.0 before 10.0.17763.3287
affected
10.0.0 before 10.0.17763.3287
affected
10.0.0 before 10.0.17763.3287
affected
10.0.0 before 10.0.19043.1889
affected
10.0.0 before 10.0.20348.887
affected
10.0.0 before 10.0.19042.1889
affected
10.0.0 before 10.0.19042.1889
affected
10.0.0 before 10.0.22000.856
affected
10.0.0 before 10.0.19044.1889
affected
10.0.0 before 10.0.10240.19387
affected
10.0.0 before 10.0.14393.5291
affected
10.0.0 before 10.0.14393.5291
affected
10.0.0 before 10.0.14393.5291
affected
6.1.0 before 6.1.7601.26065
affected
6.1.0 before 6.1.7601.26065
affected
6.3.0 before 6.3.9600.20520
affected
6.0.0 before 6.0.6003.21616
affected
6.0.0 before 6.0.6003.21616
affected
6.0.0 before 6.0.6003.21616
affected
6.1.0 before 6.1.7601.26065
affected
6.0.0 before 6.1.7601.26065
affected
6.2.0 before 6.2.9200.23817
affected
6.2.0 before 6.2.9200.23817
affected
6.3.0 before 6.3.9600.20520
affected
6.3.0 before 6.3.9600.20520
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35753 (Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability) vendor-advisory
cve.org (CVE-2022-35753)
nvd.nist.gov (CVE-2022-35753)
Download JSON
Subscribe to our newsletter to learn more about our work.
