CVE-2022-21901: Windows Hyper-V Elevation of Privilege Vulnerability

Overview

Severity

Critical (CVSS 9)

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C

Category

Elevation of Privilege

Exploit Status

Not Exploited

Exploitation Likelihood

Less Likely

Patch Tuesday

2022-Jan

Released

2022-01-11

EPSS Score

0.46% (percentile: 64.1%)

FAQ

How could an attacker exploit this vulnerability? An authenticated attacker could run a specially crafted application on a vulnerable Hyper-V guest to exploit this vulnerability which, if successful, could potentially interact with processes of another Hyper-V guest hosted on the same Hyper-V host.

Affected Products (17)

Windows

• Windows 10 Version 1809 for x64-based Systems
• Windows Server 2019
• Windows Server 2019 (Server Core installation)
• Windows 10 Version 1909 for x64-based Systems
• Windows 10 Version 21H1 for x64-based Systems
• Windows Server 2022
• Windows Server 2022 (Server Core installation)
• Windows Server, version 20H2 (Server Core Installation)
• Windows 11 version 21H2 for x64-based Systems
• Windows 10 Version 21H2 for ARM64-based Systems
• Windows 10 for x64-based Systems
• Windows 10 Version 1607 for x64-based Systems
• Windows Server 2016
• Windows Server 2016 (Server Core installation)
• Windows 8.1 for x64-based systems

ESU

• Windows Server 2012 R2
• Windows Server 2012 R2 (Server Core installation)

Security Updates (9)

• 5009557
• 5009545
• 5009543
• 5009555
• 5009566
• 5009585
• 5009546
• 5009624
• 5009595

Acknowledgments

Maxime Villard, of M.O.R.S.E.

Revision History

• 2022-01-11: Information published.