CVE-2022-21907

Description from NVD

HTTP Protocol Stack Remote Code Execution Vulnerability.

Information Acquisition Date:2022-04-17T09:54Z
CVSS 2.0: 10.0 HIGH CVSS 3.x: 9.8 CRITICAL

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

▼ CVSS2 Vec AV:N/AC:L/Au:N/C:C/I:C/A:C

NVD References

 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21907
     source:MISC
     tags:Mitigation    Patch    Vendor Advisory    
 https://www.nu11secur1ty.com/2022/01/cve-2022-21907.html
     source:MISC
     tags:Exploit    Third Party Advisory    
 https://github.com/nu11secur1ty/Windows10Exploits/tree/master/2022/CVE-2022-21907
     source:MISC
     tags:Exploit    Third Party Advisory    
 http://packetstormsecurity.com/files/165566/HTTP-Protocol-Stack-Denial-Of-Service-Remote-Code-Execution.html
     source:MISC
     tags:Exploit    Third Party Advisory    
 http://packetstormsecurity.com/files/166730/Microsoft-HTTP-Protocol-Stack-Denial-Of-Service.html
     source:MISC
     tags:

This vulnerability may involve a PoC.

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag:

List of frequently cited URLs

URLNum of Times Referred to
https://cvetrends.com54
http://twinybots.ch33
https://lists.astaro.com/ASGV9-IPS-rules.html#018
http://cyberiqs.com/latestnews12
https://thehackernews.com/2022/01/first-patch-tuesday-of-20...10
https://www.cisa.gov/uscert/ncas/alerts/aa22-011a7
http://ASP.NET6
https://www.coresecurity.com/core-labs/articles/proof-conce...6
https://buff.ly/3zXDZsi4
https://twitter.com/wdormann/status/14809724628127703054
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2...4
https://www.helpnetsecurity.com/2022/01/11/cve-2022-21907/?...4
http://ow.ly/8jYX50HQ1Ln3
https://github.com/nu11secur1ty/Windows10Exploits/tree/mast...3
https://isc.sans.edu/forums/diary/A+Quick+CVE202221907+FAQ+...3
https://corelight.com/blog/detecting-cve-2022-219073
https://reconshell.com/cve-2022-21907-http-protocol-stack-r...3
https://www.tenable.com/blog/microsofts-january-2022-patch-...3
https://piffd0s.medium.com/patch-diffing-cve-2022-21907-b73...3
https://www.kennasecurity.com/blog/february-vuln-of-the-mon...3
https://nakedsecurity.sophos.com/2022/01/12/wormable-window...3
https://www.bleepingcomputer.com/news/microsoft/microsoft-n...3
https://ipssignatures.appspot.com/?cve=CVE-2022-219073

Information from Twitter

User URL Info Source Date
No Data

List of frequently cited URLs

URLNum of Times Referred to
cvetrends.com54
twinybots.ch33
lists.astaro.com18
cyberiqs.com12
thehackernews.com10
www.cisa.gov7
ASP.NET6
www.coresecurity.com6
buff.ly4
twitter.com4
msrc.microsoft.com4
www.helpnetsecurity.com4
ow.ly3
github.com3
isc.sans.edu3
corelight.com3
reconshell.com3
www.tenable.com3
piffd0s.medium.com3
www.kennasecurity.com3
nakedsecurity.sophos.com3
www.bleepingcomputer.com3
ipssignatures.appspot.com3

Information from Twitter

User URL Info Source
No Data
GitHub Search Results: Up to 10
NameURL
ZZ-SOCMAP/CVE-2022-21907 https://github.com/ZZ-SOCMAP/CVE-2022-21907
polakow/CVE-2022-21907 https://github.com/polakow/CVE-2022-21907
p0dalirius/CVE-2022-21907-http.sys https://github.com/p0dalirius/CVE-2022-21907-http.sys
mauricelambert/CVE-2022-21907 https://github.com/mauricelambert/CVE-2022-21907
michelep/CVE-2022-21907-Vulnerability-PoC https://github.com/michelep/CVE-2022-21907-Vulnerability-PoC
corelight/cve-2022-21907 https://github.com/corelight/cve-2022-21907
Malwareman007/CVE-2022-21907 https://github.com/Malwareman007/CVE-2022-21907
xiska62314/CVE-2022-21907 https://github.com/xiska62314/CVE-2022-21907
iveresk/cve-2022-21907 https://github.com/iveresk/cve-2022-21907
gpiechnik2/nmap-CVE-2022-21907 https://github.com/gpiechnik2/nmap-CVE-2022-21907
GitHub Search Results: Up to 10
NameURL
ZZ-SOCMAP/CVE-2022-21907 github.com
polakow/CVE-2022-21907 github.com
p0dalirius/CVE-2022-21907-http.sys github.com
mauricelambert/CVE-2022-21907 github.com
michelep/CVE-2022-21907-Vulnerability-PoC github.com
corelight/cve-2022-21907 github.com
Malwareman007/CVE-2022-21907 github.com
xiska62314/CVE-2022-21907 github.com
iveresk/cve-2022-21907 github.com
gpiechnik2/nmap-CVE-2022-21907 github.com
2023/03/11 Score : 3
Added Har-sia Database : 2022/01/12
Last Modified : 2023/03/11
Highest Scored Date : 2022/01/12
Highest Score : 155