Original release date: April 13, 2022
Microsoft has released an advisory to address CVE-2022-26809, a critical remote code execution vulnerability in Remote Procedure Call Runtime Library. A remote, unauthenticated attacker could exploit this vulnerability to take control of an affected system.
CISA encourages users and administrators to review Microsoft’s advisory and apply the recommended mitigations.
This product is provided subject to this Notification and this Privacy & Use policy.