CVE-2022-38029

HIGH

Windows ALPC - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-38029. PoCs published by SpiralBL0CK.

AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2022-38029, leveraging ALPC (Advanced Local Procedure Call) to trigger a use-after-free (UAF) vulnerability in Windows. The code demonstrates the setup of ALPC connections, port section creation, and thread manipulation to exploit the vulnerability.

Description

Windows ALPC Elevation of Privilege Vulnerability

Exploits (1)

nomisec WORKING POC 1 stars
by SpiralBL0CK · poc
https://github.com/SpiralBL0CK/SIDECHANNEL-CVE-2022-38029

This repository contains a functional exploit PoC for CVE-2022-38029, leveraging ALPC (Advanced Local Procedure Call) to trigger a use-after-free (UAF) vulnerability in Windows. The code demonstrates the setup of ALPC connections, port section creation, and thread manipulation to exploit the vulnerability.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Complex
Reliability
Racy
Target: Windows (specific version not specified in the provided code)
No auth needed
Prerequisites: Local access to a vulnerable Windows system
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 7.0
EPSS 0.0061
EPSS Percentile 44.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-362
Status published
Products (18)
microsoft/windows_10
microsoft/windows_10 20h2
microsoft/windows_10 21h1
microsoft/windows_10 21h2
microsoft/windows_10 1607
microsoft/windows_10 1809
microsoft/windows_11 (2 CPE variants)
microsoft/windows_11 22h2 (2 CPE variants)
microsoft/windows_7
microsoft/windows_8.1
... and 8 more
Published Oct 11, 2022
Tracked Since Feb 18, 2026