CVE-2022-21846 (Exchange, CVSS 9.0) and CVE-2022-21907 (http.sys, CVSS 9.8) released today

7 views
Skip to first unread message

Michael B. Smith

unread,
Jan 11, 2022, 6:01:36 PM1/11/22
to ntsys...@googlegroups.com, ntexc...@googlegroups.com

FYI:

 

http.sys issue impacts Windows v1903 and higher (including Server 2019 and Server 2022)

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-21907

 

Exchange issue impacts on-prem Exchange 2013, 2016, and 2019.

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-21846

 

(There are others, these are just the CVSS 9.0 or higher issues.)

 

Thanks.

 

Regards,

Michael B. Smith             

 

Reply all
Reply to author
Forward
0 new messages