Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2022-21914: Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft Windows: CVE-2022-21914: Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
01/11/2022
Created
01/17/2022
Added
01/11/2022
Modified
09/06/2024

Description

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21885.

Solution(s)

  • microsoft-windows-windows_10-1507-kb5009585
  • microsoft-windows-windows_10-1607-kb5009546
  • microsoft-windows-windows_10-1809-kb5009557
  • microsoft-windows-windows_10-1909-kb5009545
  • microsoft-windows-windows_10-20h2-kb5009543
  • microsoft-windows-windows_10-21h1-kb5009543
  • microsoft-windows-windows_10-21h2-kb5009543
  • microsoft-windows-windows_11-21h2-kb5009566
  • microsoft-windows-windows_server_2012-kb5009619
  • microsoft-windows-windows_server_2012_r2-kb5009595
  • microsoft-windows-windows_server_2016-1607-kb5009546
  • microsoft-windows-windows_server_2019-1809-kb5009557
  • microsoft-windows-windows_server_2022-21h2-kb5009555
  • microsoft-windows-windows_server_2022-22h2-kb5009555
  • msft-kb5009543-e6a7130f-f52b-4ae1-bd76-f4d96045c0e6
  • msft-kb5009595-41086178-49d7-4214-9077-1d9e22a2aedc
  • msft-kb5009595-42a13a00-0ced-433f-bcfb-f26acc1cb8cc
  • msft-kb5009601-0812568d-f3b4-460c-89ad-fd826b169202
  • msft-kb5009601-97272148-50b2-430a-8446-e96b6965d781
  • msft-kb5009619-9b52ffce-524c-4046-9cdc-f46b73a1dcd8
  • msft-kb5009619-a641f759-8d82-40ac-b738-0c1f52fc8abe
  • msft-kb5009621-0a15a832-daf7-48d9-9bbf-8ada26112090
  • msft-kb5009621-0fc1b8bb-2675-4b1a-9559-4b9d06c83462
  • msft-kb5009621-41af1e92-a8f8-4600-ab87-b900ae9f994e
  • msft-kb5009621-9eb5fe51-01cf-4941-b81d-7f60ef0db6e1
  • msft-kb5009621-d4fad9a3-cc7d-4783-9907-015f0c77a54c

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;