HOW TO FIX CVE-2022-26809- A CRITICAL RCE VULNERABILITY IN WINDOWS RPC RUNTIME
Microsoft’s April Patch Tuesday brings several vulnerability fixes, including CVE-2022-26809, a critical remote code execution vulnerability in the Windows Remote Procedure Call Runtime library impacting all supported Windows products.
1. Apply the latest security updates to mitigate these vulnerabilities. 2. RPC is required for devices used by the system. It is recommended to block traffic to TCP port 445 for services outside the enterprise perimeter. 3. Limit the lateral movement by enabling incoming TCP port 445 only to machines where it is required, such as print servers, domain controllers, file servers, etc.
How To Fix CVE-2022-26809- A Critical RCE Vulnerability In Windows RPC Runtime?