Security Vulnerabilities - CVEs Published In May 2022
Windows NTFS Information Disclosure Vulnerability
CVSS Score
5.5
EPSS Score
0.005
Published
2022-05-10
Windows Graphics Component Information Disclosure Vulnerability
CVSS Score
6.5
EPSS Score
0.174
Published
2022-05-10
Windows WLAN AutoConfig Service Information Disclosure Vulnerability
CVSS Score
6.5
EPSS Score
0.005
Published
2022-05-10
Windows Server Service Information Disclosure Vulnerability
CVSS Score
6.5
EPSS Score
0.18
Published
2022-05-10
Windows Network File System Remote Code Execution Vulnerability
CVSS Score
9.8
EPSS Score
0.656
Published
2022-05-10
Storage Spaces Direct Elevation of Privilege Vulnerability
CVSS Score
7.0
EPSS Score
0.002
Published
2022-05-10
Storage Spaces Direct Elevation of Privilege Vulnerability
CVSS Score
7.0
EPSS Score
0.003
Published
2022-05-10
Remote Desktop Protocol Client Information Disclosure Vulnerability
CVSS Score
6.5
EPSS Score
0.164
Published
2022-05-10
In (TBD) of (TBD), there is a possible way to decrypt local data encrypted by the GSC due to improperly used crypto. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-217475903References: N/A
CVSS Score
5.5
EPSS Score
0.0
Published
2022-05-10
In ion_ioctl and related functions of ion.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-205707793References: N/A
CVSS Score
7.0
EPSS Score
0.0
Published
2022-05-10