PT-2022-2865 · Microsoft · Windows Dns Server+1

Yuki Chen

Published

2022-04-12

Updated

2023-08-08

CVE-2022-26816

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Windows DNS Server (affected versions not specified)

Description The issue is related to insufficient access control to ports in the Windows DNS Server component, allowing a remote attacker to disclose protected information. This can lead to the exposure of sensitive information and potentially affect the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exposure of Resource to Wrong Sphere

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-668

Related Identifiers

BDU:2022-03423

CVE-2022-26816

Affected Products

Windows

Windows Dns Server

PT-2022-2865 · Microsoft · Windows Dns Server+1

CVE-2022-26816

Weakness Enumeration

Related Identifiers

Affected Products

References · 7