The agency has added the vulnerability to its catalog of known exploited vulnerabilities, requiring the Federal Private Government agency to fix the issue by May 10,2022.
A remote codes executes when the Windows Print Spooler service improperly performs privileged file operations. An attacker who exploited this vulnerability could execute arbitrary code with system privileges and install view, modify or delete the program. Also attacker can create a new account with full user privileges.
Print nightmare is a vulnerability in the Windows Print Spooler service that could allow remote code execution. This may have been first fixed by Microsoft in the June’21 patch bundle and in early july’21 Microsoft released an patch for nightmare when researches claimed that this patch did not address all attacks. In Mid-July’21 Microsoft researching on another print nightmare at that time , Microsoft was proposing that organization use workaround to disable the windows print spooler service but this also removes print function.
This vulnerability, listed as CVE-2022-22718 (CVSS score: 7.8), is a critical remote
code execution vulnerability from last year, including 15 privilege escalation
vulnerabilities in April 2022 by Print Nightmares. Below vulnerabilities based on "evidence of aggressive abuse" have also been
added to the catalog:
One of the biggest challenges today in cybersecurity is to quickly detect the vulnerabilities in the network and control the damage. Cloud Destinations enables you with nextgen vulnerability management which quickly detects and manages your Security controls effectively. Please reach out to email@example.com for any business related queries.