Threat Encyclopedia

Microsoft HackerOne: CVE-2022-27776 Insufficiently protected credentials vulnerability might leak authentication or cookie header data


Microsoft Security Update to address the information disclosure vulnerability found in Windows 10, Windows 11, Windows Server 2019, Windows Server version 20H2 (Server Core Installation), Windows Server 2022

affected-products-logoAffected Applications

Windows 10
Windows 11
Windows Server 2019
Windows Server 2022
Windows Server version 20H2 (Server Core Installation)

CVE References


Telemetry logoTelemetry