GreyNoise Trends

Windows Remote Procedure Call Runtime RCE Attempt

Tag Intent

malicious

Tag Category

activity

IP addresses with this tag have been observed attempting to exploit CVE-2022-26809, a remote command execution vulnerability in the Windows remote procedure call runtime.

CVEs:

CVE-2022-26809

Loading data...

Timeline

Sequence of recorded events

GreyNoise created the tag windows-remote-procedure-call-runtime-rce-attempt and started monitoring for related activity

CVE-2022-26809 was published by MITRE

View Tagged IPs →

Actions

Manual

Automated

Related Tags:

No related tags

References:

https://nvd.nist.gov/vuln/detail/CVE-2022-26809
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-26809
https://corelight.com/blog/another-day-another-dce-rpc-rce