CVE-2022-32230NULL Pointer Dereference in Microsoft Windows 10 Version 20h2

CWE-476NULL Pointer Dereference4 documents4 sources
Severity
7.5HIGHNVD
EPSS
28.8%
top 3.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Microsoft Windows 10 Version 20h2Microsoft Windows 10 Version 21h1Microsoft Windows 10 Version 21h2+2 more
Timeline
PublishedJun 14
Latest updateJun 15

Description

Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB sess

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages5 packages

CVEListV5microsoft/windows_server_version_20h219042.170619042.1706+2
CVEListV5microsoft/windows_10_version_20h219042.170619042.1706+2
CVEListV5microsoft/windows_10_version_21h119042.170619042.1706+2
CVEListV5microsoft/windows_10_version_21h219042.170619042.1706+2
NVDmicrosoft/windows_104 versions+3

Patches

Patch: msrc.microsoft.comPatch: support.microsoft.comPatch: msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-cgqq-pmpm-6gmx: Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set2022-06-15
CVEList
SMBv3 FileNormalizedNameInformation NULL Pointer Dereference2022-06-14

📋Vendor Advisories

1
Microsoft
Windows SMB Denial of Service Vulnerability2022-06-14
CVE-2022-32230 — NULL Pointer Dereference in Microsoft | cvebase