• Language chooser
    • USA (English)
    • France (Français)

Microsoft Windows RPC RCE Vulnerability

Released: Apr 18, 2022


High Severity

Microsoft Windows Platform

Microsoft Vendor

Vulnerability Type

WannaCry about it later or patch it now?.

This vulnerability is a critical remote code execution vulnerability in Remote Procedure Call Runtime Library. A remote, unauthenticated attacker could exploit this vulnerability to take control of an affected system. Learn More »

Common Vulnerabilities and Exposures

CVE-2022-26809

Background

This vulnerability uses the SMB port - that means if someone were to exploit it and weponize it with ransomware, then it could become as dangerous as WannaCry.

Latest Development

Recent news and incidents related to cybersecurity threats encompassing various events such as data breaches, cyber-attacks, security incidents, and vulnerabilities discovered.


April 12, 2022: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-26809


April 13, 2022: See below for more details on the product mapping. At this time, Microsft claims there are no known exploits in the wild.

FortiGuard Cybersecurity Framework

Mitigate security threats and vulnerabilities by leveraging the range of FortiGuard Services.


PROTECT
DETECT
RESPOND
  • Assisted Response Services

  • Automated Response

RECOVER
  • NOC/SOC Training

  • End-User Training

IDENTIFY
  • Attack Surface Hardening

Threat Intelligence

Information gathered from analyzing ongoing cybersecurity events including threat actors, their tactics, techniques, and procedures (TTPs), indicators of compromise (IOCs), malware and related vulnerabilities.


Loading ...

Indicators of compromise Indicators of compromise
IOC Threat Activity

Last 30 days

Chg

Avg 0

References

Sources of information in support and relation to this Outbreak and vendor.