CVE-2022-44704
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Dec 13, 2022
Updated: Jan 2, 2025
Summary
CVE-2022-44704 is an elevation of privilege vulnerability affecting Microsoft Windows System Monitor (Sysmon). Successful exploitation of this flaw allows an attacker to run commands with higher privileges than intended, potentially leading to significant security compromise. The vulnerability, residing in Sysmon's WinEventLogOnSecurity event, can be triggered through specially crafted event logs, giving attackers system-level access. Microsoft has released patches to address this issue, urging users to apply them promptly to mitigate potential threats.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Microsoft