CVE-2022-21985: 
vulnerability analysis and mitigation

CVE-2022-21985 is a Windows Remote Access Connection Manager Information Disclosure Vulnerability that was disclosed in February 2022. The vulnerability affects multiple versions of Microsoft Windows operating systems including Windows 10, Windows 11, Windows Server 2012, Windows Server 2016, Windows Server 2019, and Windows Server 2022 (RAPID7).

This is an information disclosure vulnerability in the Windows Remote Access Connection Manager component. The vulnerability has been assigned a CVSS v2 base score of 2.0, indicating low severity, with the following vector: AV:L/AC:L/Au:N/C:P/I:N/A:N. This means it requires local access, low attack complexity, no authentication, and can only impact confidentiality partially (RAPID7).

The vulnerability could allow an attacker to obtain information disclosure from the affected system. The impact is limited to information disclosure with no integrity or availability impacts (RAPID7).

Microsoft has released security updates to address this vulnerability. The fixes are available through multiple KB updates including KB5010342, KB5010345, KB5010351, KB5010354, KB5010358, KB5010359, KB5010386, KB5010395, and KB5010412 for different affected versions (RAPID7).