All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2022-26923
NONEKEVpublish date unavailable
CVSS / 10
// description
An authenticated user could manipulate attributes on computer accounts they own or manage, and acquire a certificate from Active Directory Certificate Services that would allow for privilege escalation to SYSTEM.
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2022-08-18 00:00 UTC