Severity
High
Analysis Summary
CVE-2022-38007
Microsoft Azure Arc and Azure Guest Configuration could allow a local authenticated attacker to gain elevated privileges on the system. By executing a specially-crafted program, an authenticated attacker could exploit this vulnerability to execute arbitrary code with higher privileges.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2022-39135
Affected Vendors
- Microsoft
Affected Products
- Microsoft Azure ARC
- Microsoft Azure Guest Configuration
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.