Advisory 22

TLP Rating: Clear

Microsoft windows client Server Runtime (CSRSS) Privilege Escalation – CVE-2022-22047

CERT Vanuatu (CERTVU) and the Office of the Chief Information Officer (OGCIO) provides the following advisory.

On the 12th of July 2022, CERT Vanuatu has received an advisory from its collaborating partner, Cybersecurity Infrastructure Security Agency (CISA) of the alert for the threat.

CERTVU would like to advise its constituents using Microsoft Products to swiftly act on addressing this threat.

What is it?

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the Microsoft Windows Client/Server Runtime Subsystem (CSRSS). A local user can run a specific crafted program to execute arbitrary code with SYSTEM privileges.

References

  1. https://www.cisa.gov/known-exploited-vulnerabilities-catalog