| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2022-30136 | Windows Network File System Remote Code Execution Vulnerability | Windows Server 2019 | Critical | 18-06-2022 |
Technical Information
A Remote Code Execution (RCE) vulnerability exists in Windows Network File System. This vulnerability could be exploited over the network by making an unauthenticated, specially crafted call to a Network File System service to trigger a RCE. An attacker who successfully exploited the vulnerability could execute arbitrary code in the context of the logged on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Further information on this vulnerability is available at : CVE-2022-30136
Affected Software
Windows Server 2019Windows Server 2019 (Server Core installation)
Windows Server 2016
Windows Server 2016 (Server Core installation)
Windows Server 2012
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 R2 (Server Core installation)