Windows Print Spooler Elevation of Privilege Vulnerability

CVE	CVE-2022-26795
State	PUBLISHED
Assigner	microsoft
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-04-15 19:15:13 UTC
Updated	2026-06-02 14:16:27 UTC
Description	Windows Print Spooler Elevation of Privilege Vulnerability

Primary CVSS: v3.1 7.8 HIGH from [email protected]

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem Types: NVD-CWE-noinfo | CWE-269 | Elevation of Privilege | CWE-269 CWE-269 Improper Privilege Management

Version	Source	Type	Score	Severity	Vector
3.1	[email protected]	Secondary	7.8	HIGH	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H`
3.1	CNA	CVSS	7.8	HIGH	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C`
2.0	[email protected]	Primary	4.6		`AV:L/AC:L/Au:N/C:P/I:P/A:P`

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Access Vector

Local

Access Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

AV:L/AC:L/Au:N/C:P/I:P/A:P

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Microsoft	Windows 10	1809	All	All	All
Operating System	Microsoft	Windows 10	1909	All	All	All
Operating System	Microsoft	Windows 10	20h2	All	All	All
Operating System	Microsoft	Windows 10	21h1	All	All	All
Operating System	Microsoft	Windows 10	21h2	All	All	All
Operating System	Microsoft	Windows 11	-	All	All	All
Operating System	Microsoft	Windows 11	-	All	All	All
Operating System	Microsoft	Windows Server 2016	20h2	All	All	All
Operating System	Microsoft	Windows Server 2019	-	All	All	All
Operating System	Microsoft	Windows Server 2022	-	All	All	All

Source	Vendor	Product	Version	Platforms
CNA	Microsoft	Windows 10 Version 1809	affected 10.0.17763.0 10.0.17763.2803 custom	32-bit Systems, x64-based Systems
CNA	Microsoft	Windows 10 Version 1809	affected 10.0.0 10.0.17763.2803 custom	ARM64-based Systems
CNA	Microsoft	Windows Server 2019	affected 10.0.17763.0 10.0.17763.2803 custom	x64-based Systems
CNA	Microsoft	Windows Server 2019 Server Core Installation	affected 10.0.17763.0 10.0.17763.2803 custom	x64-based Systems
CNA	Microsoft	Windows 10 Version 1909	affected 10.0.0 10.0.18363.2212 custom	32-bit Systems, x64-based Systems, ARM64-based Systems
CNA	Microsoft	Windows 10 Version 21H1	affected 10.0.0 10.0.19043.1645 custom	x64-based Systems, ARM64-based Systems, 32-bit Systems
CNA	Microsoft	Windows Server 2022	affected 10.0.20348.0 10.0.20348.643 custom	x64-based Systems
CNA	Microsoft	Windows 10 Version 20H2	affected 10.0.0 10.0.19042.1645 custom	32-bit Systems, ARM64-based Systems
CNA	Microsoft	Windows Server Version 20H2	affected 10.0.0 10.0.19042.1645 custom	x64-based Systems
CNA	Microsoft	Windows 11 Version 21H2	affected 10.0.0 10.0.22000.613 custom	x64-based Systems, ARM64-based Systems
CNA	Microsoft	Windows 10 Version 21H2	affected 10.0.19043.0 10.0.19044.1645 custom	32-bit Systems, ARM64-based Systems, x64-based Systems

Reference	Source	Link	Tags
Security Update Guide - Microsoft Security Response Center	af854a3a-2127-422b-91ae-364da2661108	msrc.microsoft.com
Security Update Guide - Microsoft Security Response Center	MITRE	portal.msrc.microsoft.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.