Endpoint Vulnerability

Microsoft Windows StateRepository API Server file CVE-2022-21863 Elevation of Privilege Vulnerability

Description

Elevation of Privilege via Windows StateRepository API Server file handling allows local attackers to gain full system privileges on affected Windows 10 versions.

Affected Applications

Windows 10
Windows Server 2016
Windows Server 2019
Windows Server version 20H2 (Server Core Installation)
Windows Server 2022

Version Updates

Date	Version	Status	Detail
2022-01-12	1.00287	New	Windows 10,Windows Server 2016,Windows Server 2019,Windows Server version 20H2 (Server Core Installation),Windows Server 2022

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21863

ID	70098
Created	Jan 11, 2022
Description Updated	Jan 10, 2026
CVE ID
Risk
Coverage	FortiClient
OS	Windows
Vendor	Microsoft
Patch	auto
Application	Windows 10 , Windows Server 2016 , Windows Server 2019 , Windows Server version 20H2 (Server Core Installation) , Windows Server 2022