CVE-2022-32230

Summary

Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot.

Affected Software

VendorProductVersion RangeStatus
MicrosoftWindows 10 Version 20H219042.1706 < 19042.1706affected
MicrosoftWindows 10 Version 20H219043.1706 < 19043.1706affected
MicrosoftWindows 10 Version 20H219044.1706 < 19043.1706affected
MicrosoftWindows Server Version 20H219042.1706 < 19042.1706affected
MicrosoftWindows Server Version 20H219043.1706 < 19043.1706affected
MicrosoftWindows Server Version 20H219044.1706 < 19044.1706affected
MicrosoftWindows 10 Version 21H119042.1706 < 19042.1706affected
MicrosoftWindows 10 Version 21H119043.1706 < 19043.1706affected
MicrosoftWindows 10 Version 21H119044.1706 < 19044.1706affected
MicrosoftWindows 10 Version 21H219042.1706 < 19042.1706affected
MicrosoftWindows 10 Version 21H219043.1706 < 19043.1706affected
MicrosoftWindows 10 Version 21H219044.1706 < 19044.1706affected

Weaknesses

  • CWE-476: CWE-476 NULL Pointer Dereference

ADP Enrichment

CVE Program Container

Additional References

References