CVE-2022-26926

CVE Database · CVE-2022-26926

· HIGHModified

CVSS v3.1

7.8

EPSS

2.54%

Published

May 10, 2022

Modified

May 27, 2026

Public PoC / Exploit (1)

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Windows Address Book Remote Code Execution Vulnerability

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-284

Affected Products (35)

microsoft · windows_10vulnerable

References (2)

PatchVendor Advisory

microsoft · windows_10

microsoft · windows_10vulnerable

microsoft · windows_11vulnerable

microsoft · windows_7vulnerable

microsoft · windows_8.1vulnerable

microsoft · windows_rt_8.1vulnerable

microsoft · windows_servervulnerable

microsoft · windows_server_2008vulnerable

microsoft · windows_server_2012vulnerable

microsoft · windows_server_2016vulnerable

microsoft · windows_server_2019vulnerable