CVE-2022-22029

HIGH

Windows Network File System < - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-22029. PoCs published by mchoudhary15.

AI-analyzed exploit summary This repository provides a PowerShell script to mitigate CVE-2022-22029 by disabling NFSV3 on Windows systems. It does not contain an exploit but rather a workaround to prevent exploitation.

Description

Windows Network File System Remote Code Execution Vulnerability

Exploits (1)

nomisec WRITEUP 1 stars
by mchoudhary15 · poc
https://github.com/mchoudhary15/CVE-2022-22029-NFS-Server-

This repository provides a PowerShell script to mitigate CVE-2022-22029 by disabling NFSV3 on Windows systems. It does not contain an exploit but rather a workaround to prevent exploitation.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: Windows Network File System (NFS) Server
Auth required
Prerequisites: Administrative access to the target system
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 8.1
EPSS 0.0514
EPSS Percentile 91.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

Status published
Products (8)
microsoft/windows_server_2008 (2 CPE variants)
microsoft/windows_server_2008 r2 sp1
microsoft/windows_server_2012
microsoft/windows_server_2012 r2
microsoft/windows_server_2016
microsoft/windows_server_2016 20h2
microsoft/windows_server_2019
microsoft/windows_server_2022
Published Jul 12, 2022
Tracked Since Feb 18, 2026