CVE-2022-38396

Name of the Vulnerable Software and Affected Versions Windows 10 versions prior to 21H2

Description The issue is related to HP Factory Preinstalled Images on certain systems shipped with Windows 10, where escalation of privilege might occur via execution of certain files outside the restricted path. This is due to incorrect restriction of the directory path name with limited access. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For Windows 10 versions prior to 21H2, update to Windows 10 version 21H2 or later to resolve the issue.