CVE-2022-21974

HIGH

Roaming Security Rights Management Services - RCE

Title source: llm

Roaming Security Rights Management Services Remote Code Execution Vulnerability

nomisec WRITEUP 60 stars

by 0vercl0k · poc

Core 1

Core References

Vendor Advisory vendor-advisory

CVSS v3 7.8

EPSS 0.0881

EPSS Percentile 92.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Status published

Products (11)

microsoft/windows_10 20h2 (3 CPE variants)

microsoft/windows_10 21h1 (3 CPE variants)

microsoft/windows_10 21h2 (3 CPE variants)

microsoft/windows_10 1607 (2 CPE variants)

microsoft/windows_10 1809 (3 CPE variants)

microsoft/windows_10 1909 (3 CPE variants)

microsoft/windows_11 (2 CPE variants)

microsoft/windows_server 20h2

microsoft/windows_server 2022

microsoft/windows_server_2016

... and 1 more

Published Feb 09, 2022

Tracked Since Feb 18, 2026