Main Vulnerability Database Vulnerabilities #VU68136

#VU68136 Spoofing attack in Windows Server and Windows - CVE-2022-34689

Published: October 11, 2022 / Updated: January 27, 2023

Vulnerability identifier: #VU68136

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/U:Green

CVE-ID: CVE-2022-34689

CWE-ID: CWE-451

Exploitation vector: Remote access

Exploit availability: Public exploit is available

Vulnerable software:
Windows Server
Windows

Software vendor:
Microsoft

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of user-supplied data in the Windows CryptoAPI. A remote attacker can manipulate an existing public x.509 certificate, spoof page content and and perform actions such as authentication or code signing as the targeted certificate.

Remediation

Install updates from vendor's website.

External links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34689