CVE-2022-40733

low-risk

Published 2024-12-18

An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot. An unprivileged user can run specially-crafted code to trigger Denial Of Service.

Do I need to act?

0.41% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.0/10 Medium

LOCAL / LOW complexity

Affected Products (2)

Windows 11 21H2

Windows Server 2022

Affected Vendors

Microsoft

References (1)

Exploit https://talosintelligence.com/vulnerability_reports/TALOS-2022-1515

/ 100

low-risk

Severity 17/34 · Moderate

Exploitability 2/34 · Minimal

Exposure 7/34 · Low