CriticalListed in CISA KEVCVE-2022-26925

CVE-2022-26925 - Windows

CVE-2022-26925 affects Windows. Listed in CISA KEV. no CVSS score published.

Published: April 12, 2026Updated: April 12, 2026

What happened

CVE-2022-26925 - Windows is tracked under CVE-2022-26925. EtcSec classified this advisory as Critical with an exploit status of Listed in CISA KEV.

The current source set points to Windows. The advisory record was generated from primary sources and normalized into the identity-security workflow.

Affected products

  • Windows

Why it matters for identity teams

This advisory scored 62/100 on EtcSec's identity relevance classifier. The score is driven by the affected products, authentication surface, directory dependencies, and exploit context.

Exposure conditions

  • Severity: Critical
  • CVSS: n/a
  • Exploit status: Listed in CISA KEV
  • Vendor: Microsoft
  • Product family: Windows

Detection and validation

  • Review the vendor advisory and verify the affected product versions across your identity estate.
  • Validate whether exposed authentication, directory sync, federation, or certificate paths are present in the environment.
  • Confirm whether compensating controls or emergency mitigations are already active.

Remediation / workaround

  1. Identify exposed systems and versions first.
  2. Apply the vendor fix or workaround where available.
  3. Restrict external exposure and high-risk authentication paths until patching is complete.
  4. Re-run your identity security review to confirm the exposure is closed.

Sources

What EtcSec can help review

EtcSec can help teams review affected identity paths, exposed administrative surfaces, privileged access, and supporting configuration drift after emergency changes or patch deployment.

CVE-2022-26925 - Windows | EtcSec