Internet Information Services (IIS) server is a web server from Microsoft that serves the request for HTML pages or files. CVE-2022-30209 is an elevation of privilege vulnerability in Windows IIS server. This vulnerability exists when the length of a buffer is not checked by the IIS server before copying memory to it. An attacker who successfully exploits this vulnerability can run an unprivileged function to execute a code in the system.