← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-26904 — Actively Exploited: Windows (Microsoft)

Microsoft Windows User Profile Service contains an unspecified vulnerability that allows for privilege escalation.

CVE IDCVE-2022-26904
VendorMicrosoft
ProductWindows
Vulnerability nameMicrosoft Windows User Profile Service Privilege Escalation Vulnerability
Date added2022-04-25
Remediation due2022-05-16
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionMicrosoft Windows User Profile Service contains an unspecified vulnerability that allows for privilege escalation.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →