What is the severity of CVE-2022-26815?

CVE-2022-26815 is rated as critical due to the potential for remote code execution.

Which Microsoft products are affected by CVE-2022-26815?

CVE-2022-26815 impacts multiple versions of Windows Server including 2008 R2, 2012, 2016, 2019, and 2022.

How do I fix CVE-2022-26815?

To remediate CVE-2022-26815, it is necessary to apply the relevant security updates provided by Microsoft.

What type of vulnerability is CVE-2022-26815?

CVE-2022-26815 is classified as a remote code execution vulnerability affecting the Windows DNS Server.

Can CVE-2022-26815 be exploited remotely?

Yes, CVE-2022-26815 can be exploited remotely, potentially allowing attackers to execute arbitrary code on affected servers.

Vulnerability/
CVE-2022-26815

critical

12/4/2022

15/4/2022

2/1/2025

CVE-2022-26815: Windows DNS Server Remote Code Execution Vulnerability

First published: Tue Apr 12 2022(Updated: )

Windows DNS Server Remote Code Execution Vulnerability

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Windows Server 2012 R2		fix available externally fix available externally
Microsoft Windows Server 2019		fix available externally
Microsoft Windows Server 2019		fix available externally
Microsoft Windows Server 2016		fix available externally
Microsoft Windows Server 2008 R2		fix available externally fix available externally
Microsoft Windows Server 2022		fix available externally
Microsoft Windows Server 2008 R2		fix available externally fix available externally
Microsoft Windows Server 2022		fix available externally
Microsoft Windows Server 2016		fix available externally
Microsoft Windows Server 2012 R2		fix available externally fix available externally
Microsoft Windows Server	=20H2	fix available externally
Microsoft Windows Server 2012 x64		fix available externally fix available externally
Microsoft Windows Server 2012 x64		fix available externally fix available externally
Microsoft Windows Server 2008 Itanium		fix available externally fix available externally
Microsoft Windows Server 2008 Itanium		fix available externally fix available externally
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=r2-sp1
Microsoft Windows Server 2012 x64
Microsoft Windows Server 2012 x64	=r2
Microsoft Windows Server 2016
Microsoft Windows Server 2016	=20h2
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2008 Itanium		fix available externally fix available externally
Microsoft Windows Server 2008 Itanium		fix available externally fix available externally

Never miss a vulnerability like this again

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26815 (Advisory)

Frequently Asked Questions

What is the severity of CVE-2022-26815?
CVE-2022-26815 is rated as critical due to the potential for remote code execution.
Which Microsoft products are affected by CVE-2022-26815?
CVE-2022-26815 impacts multiple versions of Windows Server including 2008 R2, 2012, 2016, 2019, and 2022.
How do I fix CVE-2022-26815?
To remediate CVE-2022-26815, it is necessary to apply the relevant security updates provided by Microsoft.
What type of vulnerability is CVE-2022-26815?
CVE-2022-26815 is classified as a remote code execution vulnerability affecting the Windows DNS Server.
Can CVE-2022-26815 be exploited remotely?
Yes, CVE-2022-26815 can be exploited remotely, potentially allowing attackers to execute arbitrary code on affected servers.

agent/type
agent/first-publish-date
agent/title
agent/references
agent/severity
agent/author
agent/description
collector/msrc-cve
source/Microsoft
agent/software-canonical-lookup
agent/event
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/software-canonical-lookup-request
agent/tags
agent/softwarecombine
collector/nvd-index
vendor/microsoft
canonical/microsoft windows server 2012 r2
canonical/microsoft windows server 2019
canonical/microsoft windows server 2016
canonical/microsoft windows server 2008 r2
canonical/microsoft windows server 2022
canonical/microsoft windows server
version/microsoft windows server/20h2
canonical/microsoft windows server 2012 x64
canonical/microsoft windows server 2008 itanium
version/microsoft windows server 2008 itanium/sp2
version/microsoft windows server 2008 itanium/r2-sp1
version/microsoft windows server 2012 x64/r2
version/microsoft windows server 2016/20h2

Frequently Asked Questions

What is the severity of CVE-2022-26815?
CVE-2022-26815 is rated as critical due to the potential for remote code execution.
Which Microsoft products are affected by CVE-2022-26815?
CVE-2022-26815 impacts multiple versions of Windows Server including 2008 R2, 2012, 2016, 2019, and 2022.
How do I fix CVE-2022-26815?
To remediate CVE-2022-26815, it is necessary to apply the relevant security updates provided by Microsoft.
What type of vulnerability is CVE-2022-26815?
CVE-2022-26815 is classified as a remote code execution vulnerability affecting the Windows DNS Server.
Can CVE-2022-26815 be exploited remotely?
Yes, CVE-2022-26815 can be exploited remotely, potentially allowing attackers to execute arbitrary code on affected servers.

CVE-2022-26815: Windows DNS Server Remote Code Execution Vulnerability

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2022-26815?

Which Microsoft products are affected by CVE-2022-26815?

How do I fix CVE-2022-26815?

What type of vulnerability is CVE-2022-26815?

Can CVE-2022-26815 be exploited remotely?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2022-26815?

Which Microsoft products are affected by CVE-2022-26815?

How do I fix CVE-2022-26815?

What type of vulnerability is CVE-2022-26815?

Can CVE-2022-26815 be exploited remotely?