Vulnerability · NVD
CVE-2022-35767
CRITICAL 8.1
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
EPSS
1.27%
above median
percentile 79.9%
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.
- Windows Fixed in Windows Server 2022 (Server Core installation) 10.0.20348.887 Windows Server 2022 10.0.20348.887 Windows Server 2019 (Server Core installation) 10.0.17763.3287 Windows Server 2019 10.0.17763.3287 Windows Server 2016 (Server Core installation) 10.0.14393.5291 Windows Server 2016 10.0.14393.5291 Windows 11 21H2 · 2021-H2 10.0.22000.856 Windows 10 21H2 · 2021-H2 10.0.19044.1889 Windows 10 21H1 · 2021-H1 10.0.19043.1889 Windows 10 20H2 · 2020-H2 10.0.19042.1889 Windows 10 1809 · 2018-09 10.0.17763.3287 Windows 10 1607 · 2016-07 10.0.14393.5291