CVEリスト - 高リスク・悪用確認済み脆弱性 ATT&CK の技法：Reconnaissance/Resource Development / Unmaintained Component Exposure

MITRE ATT&CK CVE list for this attack path. Use risk scores and timeline to decide what to patch first and what to track next.

EPSS スコア

≥ 1% ≥ 5% ≥ 10% ≥ 30% ≥ 50%

CVSS スコア

≥ 6 ≥ 7 ≥ 8 ≥ 9

CVE	説明	CVSS 最大値	EPSS（%）	公開	更新
CVE-2022-23718	PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution. An attacker capable of achieving a sophisticated man-in-the-middle position, or to compromise Ping Identity web servers, could deliver malicious code that would be executed as SYSTEM by the PingID Windows Login application.	7.6	1.59%	2022-06-30	2024-11-21

cvelogic Threat Intelligence

CVEリスト - 高リスク・悪用確認済み脆弱性 ·ATT&CK の技法：Reconnaissance/Resource Development / Unmaintained Component Exposure