Vulnerability · NVD
CVE-2022-44670
CRITICAL 8.1
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
EPSS
0.75%
above median
percentile 73.5%
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.
- Windows Fixed in Windows Server 2022 (Server Core installation) 10.0.20348.1366 Windows Server 2022 10.0.20348.1366 Windows Server 2019 (Server Core installation) 10.0.17763.3770 Windows Server 2019 10.0.17763.3770 Windows Server 2016 (Server Core installation) 10.0.14393.5582 Windows Server 2016 10.0.14393.5582 Windows 11 22H2 · 2022-H2 10.0.22621.993 Windows 11 21H2 · 2021-H2 10.0.22000.1335 Windows 10 22H2 · 2022-H2 10.0.19045.2364 Windows 10 21H2 · 2021-H2 10.0.19044.2364 Windows 10 21H1 · 2021-H1 10.0.19043.2364 Windows 10 20H2 · 2020-H2 10.0.19042.2364 Windows 10 1809 · 2018-09 10.0.17763.3770 Windows 10 1607 · 2016-07 10.0.14393.5582