CVE-2022-37990

Summary

CVE-2022-37990 is a recently disclosed Windows Kernel vulnerability that grants attackers elevated privileges upon successful exploitation. This issue exists due to an improper handling of objects in the kernel, enabling attackers to manipulate memory and execute code at a higher level of access. The vulnerability poses a significant risk, as it allows attackers to bypass security restrictions and take control of affected systems. Microsoft has released a patch to address this issue, and it is strongly recommended that users install it as soon as possible to mitigate the risk. Failure to apply the patch could result in unauthorized access to sensitive data and system compromise.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.