CVE-2022-44704

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 13, 2022
Updated: Jan 2, 2025

Summary

CVE-2022-44704 is an elevation of privilege vulnerability affecting Microsoft Windows System Monitor (Sysmon). Successful exploitation of this flaw allows an attacker to run commands with higher privileges than intended, potentially leading to significant security compromise. The vulnerability, residing in Sysmon's WinEventLogOnSecurity event, can be triggered through specially crafted event logs, giving attackers system-level access. Microsoft has released patches to address this issue, urging users to apply them promptly to mitigate potential threats.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share