CVE-2022-34718

CRITICAL

Windows TCP/IP - Remote Code Execution

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-34718. PoCs published by SecLabResearchBV.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2022-34718, a Remote Code Execution (RCE) vulnerability in IPv6 on Windows systems. The exploit uses Scapy to craft and send specially fragmented IPv6 packets to trigger the vulnerability.

Description

Windows TCP/IP Remote Code Execution Vulnerability

Exploits (1)

nomisec WORKING POC 49 stars

by SecLabResearchBV · poc

https://github.com/SecLabResearchBV/CVE-2022-34718-PoC

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2022-34718, a Remote Code Execution (RCE) vulnerability in IPv6 on Windows systems. The exploit uses Scapy to craft and send specially fragmented IPv6 packets to trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Windows IPv6 stack

No auth needed

Prerequisites: Scapy module · Root privileges · Target IPv6 address

MITRE ATT&CK

T1189 - Drive-by Compromise T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34718

Scores

CVSS v3 9.8

EPSS 0.4930

EPSS Percentile 98.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

Status published

Products (17)

microsoft/windows_10

microsoft/windows_10 20h2

microsoft/windows_10 21h1

microsoft/windows_10 21h2

microsoft/windows_10 1607

microsoft/windows_10 1809

microsoft/windows_11 (2 CPE variants)

microsoft/windows_7

microsoft/windows_8.1

microsoft/windows_rt_8.1

... and 7 more

Published Sep 13, 2022

Tracked Since Feb 18, 2026