<< Back
CVE Number Vulnerability Product Severity Date
CVE-2022-30136 Windows Network File System Remote Code Execution Vulnerability Windows Server 2019 Critical 18-06-2022

Technical Information

A Remote Code Execution (RCE) vulnerability exists in Windows Network File System. This vulnerability could be exploited over the network by making an unauthenticated, specially crafted call to a Network File System service to trigger a RCE. An attacker who successfully exploited the vulnerability could execute arbitrary code in the context of the logged on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Further information on this vulnerability is available at : CVE-2022-30136

Affected Software

Windows Server 2019
Windows Server 2019 (Server Core installation)
Windows Server 2016
Windows Server 2016 (Server Core installation)
Windows Server 2012
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 R2 (Server Core installation)