Vulnerability detail

Enriched intelligence for a single CVE

7.0

CVSS
High

CVE-2022-21882

PUBLISHED

Win32k Elevation of Privilege Vulnerability

Exploited in the wild No user interaction

Vendor: Microsoft
Product: Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 1909, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows Server version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2
Published: Jan 11, 2022
EPSS: —

Description

Win32k Elevation of Privilege Vulnerability

windows cisa metasploit microsoft

CVSS scores

CVSS v3.1 7.0 High

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation status

Exploited in the wild

Recorded 2022-02-04 00:00:00 UTC · Source

SSVC decision points

Exploitation: active
Automatable: No
Technical impact: total

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21882

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source	Added
CISA	Feb 04, 2022

Scanner integrations

Scanner	Reference	Detected
Metasploit	https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/cve_2022_21882_win32k.rb	Apr 28, 2025

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

cve_2022_21882_win32k

metasploit · Created Unknown

Metasploit module for CVE-2022-21882

r1l4-i3pur1l4/CVE-2022-21882

github · Created 2022-02-14 21:28:15 UTC · 6 stars

L4ys/CVE-2022-21882

github · Created 2022-02-03 11:25:14 UTC · 195 stars

David-Honisch/CVE-2022-21882

github · Created 2022-02-01 17:58:29 UTC · 8 stars

CVE-2022-21882

KaLendsi/CVE-2022-21882

github · Created 2022-01-27 03:44:10 UTC · 460 stars

win32k LPE

Timeline

CVE ID Reserved

December 14, 2021
CVE Published to Public

January 11, 2022
Added to KEVIntel

February 04, 2022
Detected by Metasploit

April 28, 2025