KEV Entry: CVE-2022-41128

Entry Details

Confirmed Exploited

Vulnerability ID

CVE-2022-41128

Status Updated At

2022-11-08 00:00 UTC

Timestamps

First Seen At

2022-11-08

Asserted At

2022-11-08

Scope

Notes

KEVIntel entry: Windows Scripting Languages Remote Code Execution Vulnerability | Affected: Microsoft / Windows 10 Version 1809, Windows Server 2019, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows 7, Windows 7 Service Pack 1, Windows 8.1, Windows Server 2008 R2 Service Pack 1, Windows Server 2012, Windows Server 2012 R2 | CVSS: 8.8 (HIGH) | Used in malware: unknown | Not yet in CISA KEV: False

References

{'id': 'CVE-2022-41128', 'url': 'https://www.cve.org/CVERecord?id=CVE-2022-41128'}
{'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2022-41128'}

Entry UUID

f1d9c180-6e5b-4e25-b4ff-51d5fd19fa73

Catalog Origin UUID

caeb2787-0d58-4236-9039-7c86c3e566f3

Created

2026-06-23 11:14 UTC

Last Updated

2026-06-23 11:14 UTC

Evidence

1

Type Source Signal Confidence Details GCVE Metadata

Type	Source	Signal	Confidence	Details	GCVE Metadata
public_report	kevintel	successful_exploitation	0.70	View details { "added_date": "2022-11-08T00:00:00.000Z", "ahead_of_cisa_kev": null, "cvss_score": 8.8, "cvss_severity": "HIGH", "epss_percentile": null, "epss_score": null, "feed": "KEVIntel (kevintel.com)", "not_yet_in_cisa_kev": false, "product": "Windows 10 Version 1809, Windows Server 2019, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows 7, Windows 7 Service Pack 1, Windows 8.1, Windows Server 2008 R2 Service Pack 1, Windows Server 2012, Windows Server 2012 R2", "title": "Windows Scripting Languages Remote Code Execution Vulnerability", "used_in_malware": "unknown", "vendor": "Microsoft" }	-

public_report

kevintel

successful_exploitation

0.70

View details

{
  "added_date": "2022-11-08T00:00:00.000Z",
  "ahead_of_cisa_kev": null,
  "cvss_score": 8.8,
  "cvss_severity": "HIGH",
  "epss_percentile": null,
  "epss_score": null,
  "feed": "KEVIntel (kevintel.com)",
  "not_yet_in_cisa_kev": false,
  "product": "Windows 10 Version 1809, Windows Server 2019, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows 7, Windows 7 Service Pack 1, Windows 8.1, Windows Server 2008 R2 Service Pack 1, Windows Server 2012, Windows Server 2012 R2",
  "title": "Windows Scripting Languages Remote Code Execution Vulnerability",
  "used_in_malware": "unknown",
  "vendor": "Microsoft"
}

-

Export Options

JSON Object JSON API View Full Catalog