What is CVE-2022-41033 and what is Microsoft doing about it?

مقالات

CVE-2022-41033 is the type of the case in which the Microsoft while being wild confirms about the actively exploits but in further it also provide no more further exploiting of the information, this phenomenon tend to impact on every possible version of the Windows that includes all the version of the Windows that belongs to windows server 7 and window from the year 2008 specifically become vulnerable. There are so many undiscovered and vulnerabilities of the window of CVE ,at first and also among the foremost that is included in the two kind of the MS exchanges in which there are under two zero days under the respective exploitation activity includes.

It is an (EoP) elevations of the privileged of the in which the vulnerability of the windows COM+ all the events system service which directly and automatically distributes the events and toward the COM components which are components of the object model In the explanation of the whole process we can give the example when the Microsoft Patch in the day of Tuesday for once upon a time fixes about eighty four vulnerabilities including an actively exploited zero flaw all of the vulnerability included a higher severity with the ratio of 13 most critical ones to lead the specific remote code execution, spoofing and the escalation of the privileged as well The kind of actively exploited among the zero days and vulnerability that is named and tracked as the CVE-2022-41034 in which the privileged escalation of the vulnerability has been found in the Windows COM plus the service of the event system that is according to the advisory of the Microsoft is the successful exploitation of this vulnerability that could enable an attacker with the sort of privileged include in the system.