⚠ Actively exploited
Added to CISA KEV on 2022-07-01. Federal agencies required to patch by 2022-07-22. Required action: Apply remediation actions outlined in CISA guidance [https://www.cisa.gov/guidance-applying-june-microsoft-patch]..
CVE-2022-26925
Severity
8.1HIGH
No vectorEPSS
37.4%
top 2.82%
CISA KEV
KEV
Added 2022-07-01
Due 2022-07-22
Exploit
Exploited in wild
Active exploitation observed
Affected products
Timeline
PublishedMay 10
KEV addedJul 1
KEV dueJul 22
Latest updateJul 10
CISA Required Action: Apply remediation actions outlined in CISA guidance [https://www.cisa.gov/guidance-applying-june-microsoft-patch].
Description
Windows LSA Spoofing Vulnerability
Windows LSA Spoofing Vulnerability
Affected Packages25 packages
🔴Vulnerability Details
5OSV▶
linux, linux-aws, linux-azure, linux-azure-5.4, linux-bluefield, linux-gcp, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, lin↗2024-07-03