What is CVE-2022-34705?

CVE-2022-34705 is a vulnerability known as Windows Defender Credential Guard Elevation of Privilege Vulnerability.

How severe is CVE-2022-34705?

CVE-2022-34705 has a severity rating of 7.8 (High).

Which software products are affected by CVE-2022-34705?

CVE-2022-34705 affects the following products: Windows 10 versions 1809, 20H2, 21H1, and 21H2; Windows Server 2016 version 20H2; Windows Server 2019; and Windows Server 2022.

How can I fix CVE-2022-34705?

To fix CVE-2022-34705, apply the relevant patches provided by Microsoft: Windows 10 (KB5016616, KB5016623), Windows Server 2019 (KB5016616, KB5016623), and Windows Server 2022 (KB5016627).

Where can I find more information about CVE-2022-34705?

You can find more information about CVE-2022-34705 on the Microsoft Security Response Center website: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34705.

Vulnerability/
CVE-2022-34705

high

7.8

CWE

416

9/8/2022

3/8/2024

CVE-2022-34705: Windows Defender Credential Guard Elevation of Privilege Vulnerability

First published: Tue Aug 09 2022(Updated: )

Windows Defender Credential Guard Elevation of Privilege Vulnerability

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Windows 10	=20h2
Microsoft Windows 10	=21h1
Microsoft Windows 10	=21h2
Microsoft Windows 10	=1809
Microsoft Windows 11
Microsoft Windows 11
Microsoft Windows Server 2016	=20h2
Microsoft Windows Server 2019
Microsoft Windows Server 2022
	=21H2	fix available externally
	=21H2	fix available externally
	=21H2	fix available externally
	=20H2	fix available externally
	=21H2	fix available externally
	=21H2	fix available externally
	=20H2	fix available externally
		fix available externally
	=20H2	fix available externally
		fix available externally
	=21H1	fix available externally
	=1809	fix available externally
		fix available externally
	=1809	fix available externally
		fix available externally
	=21H1	fix available externally
	=1809	fix available externally
	=21H1	fix available externally

Never miss a vulnerability like this again

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34705 (Advisory)

Frequently Asked Questions

What is CVE-2022-34705?
CVE-2022-34705 is a vulnerability known as Windows Defender Credential Guard Elevation of Privilege Vulnerability.
How severe is CVE-2022-34705?
CVE-2022-34705 has a severity rating of 7.8 (High).
Which software products are affected by CVE-2022-34705?
CVE-2022-34705 affects the following products: Windows 10 versions 1809, 20H2, 21H1, and 21H2; Windows Server 2016 version 20H2; Windows Server 2019; and Windows Server 2022.
How can I fix CVE-2022-34705?
To fix CVE-2022-34705, apply the relevant patches provided by Microsoft: Windows 10 (KB5016616, KB5016623), Windows Server 2019 (KB5016616, KB5016623), and Windows Server 2022 (KB5016627).
Where can I find more information about CVE-2022-34705?
You can find more information about CVE-2022-34705 on the Microsoft Security Response Center website: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34705.

agent/type
agent/first-publish-date
collector/nvd-index
agent/software-canonical-lookup-request
agent/references
agent/title
agent/severity
agent/weakness
agent/author
agent/description
collector/mitre-cve
source/MITRE
collector/msrc-cve
source/Microsoft
agent/last-modified-date
agent/tags
agent/softwarecombine
agent/software-canonical-lookup
agent/event
vendor/microsoft
canonical/microsoft windows 10
version/microsoft windows 10/20h2
version/microsoft windows 10/21h1
version/microsoft windows 10/21h2
version/microsoft windows 10/1809
canonical/microsoft windows 11
canonical/microsoft windows server 2016
version/microsoft windows server 2016/20h2
canonical/microsoft windows server 2019
canonical/microsoft windows server 2022
canonical/microsoft windows server
version/microsoft windows server/20h2
version/microsoft windows 11/21h2