Cyber Resilience

CVE-2022-44698

MediumCISA KEVActive ExploitationEUVD ExploitedRansomware-linked

Published: 13 December 2022

Published
13 December 2022
Modified
30 October 2025
KEV Added
13 December 2022
Patch
CVSS Score v3.1 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
EPSS Score 0.6722 98.6th percentile
Risk Priority 71 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2022-44698 is a medium-severity an unspecified weakness vulnerability in Microsoft Windows 10 1607. Its CVSS base score is 5.4 (Medium).

Operationally, ranked in the top 1.4% of CVEs by exploit likelihood; CISA has added it to the Known Exploited Vulnerabilities catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-2 (Flaw Remediation) and SI-3 (Malicious Code Protection).

Deeper analysis

CVE-2022-44698 is a security feature bypass vulnerability affecting the Windows SmartScreen component. The flaw carries a CVSS 3.1 score of 5.4 and allows an attacker to circumvent the reputation-based warnings that SmartScreen normally displays for untrusted downloads or web content.

An unauthenticated remote attacker can exploit the issue by convincing a user to open a malicious file or visit a crafted URL, after which SmartScreen protections are bypassed. Successful exploitation results in limited impact to integrity and availability without requiring elevated privileges.

Microsoft has published security updates addressing the vulnerability through its update guide, while CISA includes CVE-2022-44698 in its catalog of known exploited vulnerabilities, indicating confirmed in-the-wild use and underscoring the need for prompt patching. The associated EPSS score currently stands at 0.6722 after reaching a peak of 0.7222, reflecting sustained exploitation interest following disclosure.

EU & UK References

Vulnerability details

Windows SmartScreen Security Feature Bypass Vulnerability

CWE(s)
KEV Date Added
13 December 2022

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

microsoft
windows 10 1607
≤ 10.0.14393.5582
microsoft
windows 10 1809
≤ 10.0.17763.3770
microsoft
windows 10 20h2
≤ 10.0.19042.2364
microsoft
windows 10 21h1
≤ 10.0.19043.2364
microsoft
windows 10 21h2
≤ 10.0.19044.2364
microsoft
windows 10 22h2
≤ 10.0.19045.2364
microsoft
windows 11 21h2
≤ 10.0.22000.1335
microsoft
windows server 2016
≤ 10.0.14393.5582
microsoft
windows server 2019
≤ 10.0.17763.3770
microsoft
windows server 2022
≤ 10.0.20348.1366

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly enforces malicious code protection mechanisms whose bypass is the root cause of CVE-2022-44698.

prevent

Requires timely application of the vendor patch that closes the SmartScreen bypass flaw.

prevent

Mandates integrity verification of downloaded files and executables, compensating for a bypassed SmartScreen check.

References