Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-29360 (GCVE-0-2023-29360)
Vulnerability from cvelistv5 – Published: 2023-06-13 23:26 – Updated: 2025-10-21 23:05Title
Microsoft Streaming Service Elevation of Privilege Vulnerability
Summary
Microsoft Streaming Service Elevation of Privilege Vulnerability
Severity
SSVC
Exploitation: active
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-822 - Untrusted Pointer Dereference
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://msrc.microsoft.com/update-guide/vulnerabi… | vendor-advisory |
| https://www.cisa.gov/known-exploited-vulnerabilit… | government-resource |
Impacted products
12 products
| Vendor | Product | Version | |
|---|---|---|---|
| Microsoft | Windows 10 Version 1809 |
Affected:
10.0.17763.0 , < 10.0.17763.4499
(custom)
|
|
| Microsoft | Windows 10 Version 1809 |
Affected:
10.0.0 , < 10.0.17763.4499
(custom)
|
|
| Microsoft | Windows Server 2019 |
Affected:
10.0.17763.0 , < 10.0.17763.4499
(custom)
|
|
| Microsoft | Windows Server 2019 (Server Core installation) |
Affected:
10.0.17763.0 , < 10.0.17763.4499
(custom)
|
|
| Microsoft | Windows Server 2022 |
Affected:
10.0.20348.0 , < 10.0.20348.1787
(custom)
|
|
| Microsoft | Windows 11 version 21H2 |
Affected:
10.0.0 , < 10.0.22000.2057
(custom)
|
|
| Microsoft | Windows 10 Version 21H2 |
Affected:
10.0.19043.0 , < 10.0.19044.3086
(custom)
|
|
| Microsoft | Windows 11 version 22H2 |
Affected:
10.0.22621.0 , < 10.0.22621.1848
(custom)
|
|
| Microsoft | Windows 10 Version 22H2 |
Affected:
10.0.19045.0 , < 10.0.19045.3086
(custom)
|
|
| Microsoft | Windows 10 Version 1607 |
Affected:
10.0.14393.0 , < 10.0.14393.5989
(custom)
|
|
| Microsoft | Windows Server 2016 |
Affected:
10.0.14393.0 , < 10.0.14393.5989
(custom)
|
|
| Microsoft | Windows Server 2016 (Server Core installation) |
Affected:
10.0.14393.0 , < 10.0.14393.5989
(custom)
|
Date Public
2023-06-13 07:00
CISA KEV
Known Exploited Vulnerability - GCVE BCP-07 Compliant
KEV entry ID: 2897f7ce-b7d2-4922-aa26-2a96547cb27f
Exploited: Yes
Timestamps
First Seen: 2024-02-29
Asserted: 2024-02-29
Scope
Notes: KEV entry: Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability | Affected: Microsoft / Streaming Service | Description: Microsoft Streaming Service contains an untrusted pointer dereference vulnerability that allows for privilege escalation, enabling a local attacker to gain SYSTEM privileges. | Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. | Due date: 2024-03-21 | Known ransomware campaign use (KEV): Unknown | Notes (KEV): https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360 ;https://nvd.nist.gov/vuln/detail/CVE-2023-29360
Evidence
Type: Vendor Report
Signal: Successful Exploitation
Confidence: 80%
Source: cisa-kev
Details
| Cwes | CWE-822 |
|---|---|
| Feed | CISA Known Exploited Vulnerabilities Catalog |
| Product | Streaming Service |
| Due Date | 2024-03-21 |
| Date Added | 2024-02-29 |
| Vendorproject | Microsoft |
| Vulnerabilityname | Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability |
| Knownransomwarecampaignuse | Unknown |
References
Created: 2026-02-02 12:26 UTC
| Updated: 2026-02-06 07:17 UTC
KEVintel KEV
Known Exploited Vulnerability - GCVE BCP-07 Compliant
KEV entry ID: 9abf1859-5d8f-4357-869a-e701cac7cd12
Exploited: Yes
Timestamps
First Seen: 2024-02-29
Asserted: 2024-02-29
Scope
Notes: KEVIntel entry: Microsoft Streaming Service Elevation of Privilege Vulnerability | Affected: Microsoft / Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation) | CVSS: 8.4 (HIGH) | Used in malware: unknown | Not yet in CISA KEV: False
Evidence
Type: Public Report
Signal: Successful Exploitation
Confidence: 70%
Source: kevintel
Details
| Feed | KEVIntel (kevintel.com) |
|---|---|
| Title | Microsoft Streaming Service Elevation of Privilege Vulnerability |
| Vendor | Microsoft |
| Product | Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation) |
| Added Date | 2024-02-29T00:00:00.000Z |
| Cvss Score | 8.4 |
| Epss Score | None |
| Cvss Severity | HIGH |
| Epss Percentile | None |
| Used In Malware | unknown |
| Ahead Of Cisa Kev | None |
| Not Yet In Cisa Kev | False |
References
Created: 2026-06-19 12:46 UTC
| Updated: 2026-06-19 12:46 UTC
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-29360",
"options": [
{
"Exploitation": "active"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-03-01T05:00:47.855853Z",
"version": "2.0.3"
},
"type": "ssvc"
}
},
{
"other": {
"content": {
"dateAdded": "2024-02-29",
"reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-29360"
},
"type": "kev"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-10-21T23:05:45.839Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"government-resource"
],
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-29360"
}
],
"timeline": [
{
"lang": "en",
"time": "2024-02-29T00:00:00.000Z",
"value": "CVE-2023-29360 added to CISA KEV"
}
],
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T14:07:45.733Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "Windows TPM Device Driver Elevation of Privilege Vulnerability",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Windows 10 Version 1809",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.17763.4499",
"status": "affected",
"version": "10.0.17763.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"ARM64-based Systems"
],
"product": "Windows 10 Version 1809",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.17763.4499",
"status": "affected",
"version": "10.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2019",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.17763.4499",
"status": "affected",
"version": "10.0.17763.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2019 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.17763.4499",
"status": "affected",
"version": "10.0.17763.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2022",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.20348.1787",
"status": "affected",
"version": "10.0.20348.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems",
"ARM64-based Systems"
],
"product": "Windows 11 version 21H2",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.22000.2057",
"status": "affected",
"version": "10.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"ARM64-based Systems",
"x64-based Systems"
],
"product": "Windows 10 Version 21H2",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.19044.3086",
"status": "affected",
"version": "10.0.19043.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"ARM64-based Systems",
"x64-based Systems"
],
"product": "Windows 11 version 22H2",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.22621.1848",
"status": "affected",
"version": "10.0.22621.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems",
"ARM64-based Systems",
"32-bit Systems"
],
"product": "Windows 10 Version 22H2",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.19045.3086",
"status": "affected",
"version": "10.0.19045.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Windows 10 Version 1607",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.14393.5989",
"status": "affected",
"version": "10.0.14393.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2016",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.14393.5989",
"status": "affected",
"version": "10.0.14393.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2016 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.14393.5989",
"status": "affected",
"version": "10.0.14393.0",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
"versionEndExcluding": "10.0.17763.4499",
"versionStartIncluding": "10.0.17763.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*",
"versionEndExcluding": "10.0.17763.4499",
"versionStartIncluding": "10.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.17763.4499",
"versionStartIncluding": "10.0.17763.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.17763.4499",
"versionStartIncluding": "10.0.17763.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.20348.1787",
"versionStartIncluding": "10.0.20348.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
"versionEndExcluding": "10.0.22000.2057",
"versionStartIncluding": "10.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
"versionEndExcluding": "10.0.19044.3086",
"versionStartIncluding": "10.0.19043.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*",
"versionEndExcluding": "10.0.22621.1848",
"versionStartIncluding": "10.0.22621.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
"versionEndExcluding": "10.0.19045.3086",
"versionStartIncluding": "10.0.19045.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
"versionEndExcluding": "10.0.14393.5989",
"versionStartIncluding": "10.0.14393.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.14393.5989",
"versionStartIncluding": "10.0.14393.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.14393.5989",
"versionStartIncluding": "10.0.14393.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"datePublic": "2023-06-13T07:00:00.000Z",
"descriptions": [
{
"lang": "en-US",
"value": "Microsoft Streaming Service Elevation of Privilege Vulnerability"
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en-US",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-822",
"description": "CWE-822: Untrusted Pointer Dereference",
"lang": "en-US",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-01-01T01:43:54.271Z",
"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"shortName": "microsoft"
},
"references": [
{
"name": "Microsoft Streaming Service Elevation of Privilege Vulnerability",
"tags": [
"vendor-advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
}
],
"title": "Microsoft Streaming Service Elevation of Privilege Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"assignerShortName": "microsoft",
"cveId": "CVE-2023-29360",
"datePublished": "2023-06-13T23:26:04.551Z",
"dateReserved": "2023-04-04T22:34:18.384Z",
"dateUpdated": "2025-10-21T23:05:45.839Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"cisa_known_exploited": {
"cveID": "CVE-2023-29360",
"cwes": "[\"CWE-822\"]",
"dateAdded": "2024-02-29",
"dueDate": "2024-03-21",
"knownRansomwareCampaignUse": "Unknown",
"notes": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360 ;https://nvd.nist.gov/vuln/detail/CVE-2023-29360",
"product": "Streaming Service",
"requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
"shortDescription": "Microsoft Streaming Service contains an untrusted pointer dereference vulnerability that allows for privilege escalation, enabling a local attacker to gain SYSTEM privileges.",
"vendorProject": "Microsoft",
"vulnerabilityName": "Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability"
},
"epss": {
"cve": "CVE-2023-29360",
"date": "2026-06-20",
"epss": "0.22133",
"percentile": "0.97366"
},
"fkie_nvd": {
"cisaActionDue": "2024-03-21",
"cisaExploitAdd": "2024-02-29",
"cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
"cisaVulnerabilityName": "Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability",
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*\", \"versionEndExcluding\": \"10.0.14393.5989\", \"matchCriteriaId\": \"CB89DC1F-2A03-4235-B6FD-EF80FF8B3C1B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*\", \"versionEndExcluding\": \"10.0.14393.5989\", \"matchCriteriaId\": \"E5B21E84-205B-4407-90AF-4775E5D2E882\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.17763.4499\", \"matchCriteriaId\": \"92D1F996-A2DF-4163-B49B-F1A340D7E207\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.19044.3086\", \"matchCriteriaId\": \"DE69891C-7531-4FC0-9A68-D49E9ADB782E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.19045.3086\", \"matchCriteriaId\": \"F9CF581A-4B1C-4278-A9DD-1E8D8708C91D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.22000.2057\", \"matchCriteriaId\": \"15BA332E-5AD9-4586-9322-56658420EC3C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.22621.1848\", \"matchCriteriaId\": \"97E9384D-0189-4153-ACE5-E6A698DB6609\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.14393.5989\", \"matchCriteriaId\": \"3EB89BF2-200D-41E0-8336-FF6417B49180\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.17763.4499\", \"matchCriteriaId\": \"BABFDA5F-B3B7-4444-8C02-57341378971C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.20348.1784\", \"matchCriteriaId\": \"147B80EA-07E9-4933-BF06-C3328D7FCFC2\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Microsoft Streaming Service Elevation of Privilege Vulnerability\"}]",
"id": "CVE-2023-29360",
"lastModified": "2024-11-21T07:56:55.787",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"secure@microsoft.com\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.4, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.5, \"impactScore\": 5.9}]}",
"published": "2023-06-14T00:15:10.067",
"references": "[{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360\", \"source\": \"secure@microsoft.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secure@microsoft.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-822\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-29360\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2023-06-14T00:15:10.067\",\"lastModified\":\"2025-10-28T14:09:23.490\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Microsoft Streaming Service Elevation of Privilege Vulnerability\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.5,\"impactScore\":5.9}]},\"cisaExploitAdd\":\"2024-02-29\",\"cisaActionDue\":\"2024-03-21\",\"cisaRequiredAction\":\"Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.\",\"cisaVulnerabilityName\":\"Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability\",\"weaknesses\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-822\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*\",\"versionEndExcluding\":\"10.0.14393.5989\",\"matchCriteriaId\":\"CB89DC1F-2A03-4235-B6FD-EF80FF8B3C1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*\",\"versionEndExcluding\":\"10.0.14393.5989\",\"matchCriteriaId\":\"E5B21E84-205B-4407-90AF-4775E5D2E882\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.17763.4499\",\"matchCriteriaId\":\"92D1F996-A2DF-4163-B49B-F1A340D7E207\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.19044.3086\",\"matchCriteriaId\":\"DE69891C-7531-4FC0-9A68-D49E9ADB782E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.19045.3086\",\"matchCriteriaId\":\"F9CF581A-4B1C-4278-A9DD-1E8D8708C91D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.22000.2057\",\"matchCriteriaId\":\"15BA332E-5AD9-4586-9322-56658420EC3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.22621.1848\",\"matchCriteriaId\":\"97E9384D-0189-4153-ACE5-E6A698DB6609\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.14393.5989\",\"matchCriteriaId\":\"3EB89BF2-200D-41E0-8336-FF6417B49180\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.17763.4499\",\"matchCriteriaId\":\"BABFDA5F-B3B7-4444-8C02-57341378971C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.20348.1784\",\"matchCriteriaId\":\"147B80EA-07E9-4933-BF06-C3328D7FCFC2\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-29360\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360\", \"name\": \"Windows TPM Device Driver Elevation of Privilege Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T14:07:45.733Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-29360\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-03-01T05:00:47.855853Z\"}}}, {\"other\": {\"type\": \"kev\", \"content\": {\"dateAdded\": \"2024-02-29\", \"reference\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-29360\"}}}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-02-29T00:00:00.000Z\", \"value\": \"CVE-2023-29360 added to CISA KEV\"}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-29360\", \"tags\": [\"government-resource\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-01T17:47:49.542Z\"}}], \"cna\": {\"title\": \"Microsoft Streaming Service Elevation of Privilege Vulnerability\", \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 8.4, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C\"}, \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Microsoft\", \"product\": \"Windows 10 Version 1809\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.17763.0\", \"lessThan\": \"10.0.17763.4499\", \"versionType\": \"custom\"}], \"platforms\": [\"32-bit Systems\", \"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 10 Version 1809\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.0\", \"lessThan\": \"10.0.17763.4499\", \"versionType\": \"custom\"}], \"platforms\": [\"ARM64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2019\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.17763.0\", \"lessThan\": \"10.0.17763.4499\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2019 (Server Core installation)\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.17763.0\", \"lessThan\": \"10.0.17763.4499\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2022\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.20348.0\", \"lessThan\": \"10.0.20348.1787\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 11 version 21H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.0\", \"lessThan\": \"10.0.22000.2057\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\", \"ARM64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 10 Version 21H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.19043.0\", \"lessThan\": \"10.0.19044.3086\", \"versionType\": \"custom\"}], \"platforms\": [\"32-bit Systems\", \"ARM64-based Systems\", \"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 11 version 22H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.22621.0\", \"lessThan\": \"10.0.22621.1848\", \"versionType\": \"custom\"}], \"platforms\": [\"ARM64-based Systems\", \"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 10 Version 22H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.19045.0\", \"lessThan\": \"10.0.19045.3086\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\", \"ARM64-based Systems\", \"32-bit Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 10 Version 1607\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.14393.0\", \"lessThan\": \"10.0.14393.5989\", \"versionType\": \"custom\"}], \"platforms\": [\"32-bit Systems\", \"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2016\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.14393.0\", \"lessThan\": \"10.0.14393.5989\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2016 (Server Core installation)\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.14393.0\", \"lessThan\": \"10.0.14393.5989\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}], \"datePublic\": \"2023-06-13T07:00:00.000Z\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360\", \"name\": \"Microsoft Streaming Service Elevation of Privilege Vulnerability\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en-US\", \"value\": \"Microsoft Streaming Service Elevation of Privilege Vulnerability\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en-US\", \"type\": \"CWE\", \"cweId\": \"CWE-822\", \"description\": \"CWE-822: Untrusted Pointer Dereference\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.17763.4499\", \"versionStartIncluding\": \"10.0.17763.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.17763.4499\", \"versionStartIncluding\": \"10.0.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.17763.4499\", \"versionStartIncluding\": \"10.0.17763.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.17763.4499\", \"versionStartIncluding\": \"10.0.17763.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.20348.1787\", \"versionStartIncluding\": \"10.0.20348.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.22000.2057\", \"versionStartIncluding\": \"10.0.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.19044.3086\", \"versionStartIncluding\": \"10.0.19043.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:arm64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.22621.1848\", \"versionStartIncluding\": \"10.0.22621.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.19045.3086\", \"versionStartIncluding\": \"10.0.19045.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.14393.5989\", \"versionStartIncluding\": \"10.0.14393.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.14393.5989\", \"versionStartIncluding\": \"10.0.14393.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.14393.5989\", \"versionStartIncluding\": \"10.0.14393.0\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"shortName\": \"microsoft\", \"dateUpdated\": \"2025-01-01T01:43:54.271Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-29360\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-21T23:05:45.839Z\", \"dateReserved\": \"2023-04-04T22:34:18.384Z\", \"assignerOrgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"datePublished\": \"2023-06-13T23:26:04.551Z\", \"assignerShortName\": \"microsoft\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2023-AVI-0462
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Microsoft Windows. Elles permettent à un attaquant de provoquer une usurpation d'identité, une atteinte à la confidentialité des données, un déni de service, un contournement de la fonctionnalité de sécurité, une exécution de code à distance et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | Windows | Windows Server 2022 | ||
| Microsoft | Windows | Windows Server 2012 | ||
| Microsoft | Windows | Windows 10 pour systèmes x64 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes x64 | ||
| Microsoft | Windows | Windows Server 2019 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2019 | ||
| Microsoft | Windows | Windows Server 2012 R2 | ||
| Microsoft | Windows | Windows Server 2022 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 1607 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes x64 Service Pack 2 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 11 version 21H2 pour systèmes x64 | ||
| Microsoft | Windows | Remote Desktop client pour Windows Desktop | ||
| Microsoft | Windows | Windows Server 2016 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 22H2 pour systèmes x64 | ||
| Microsoft | Windows | Windows 11 version 21H2 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes x64 Service Pack 2 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes 32 bits Service Pack 2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 1607 pour systèmes x64 | ||
| Microsoft | Windows | Windows Server 2012 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes x64 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes 32 bits Service Pack 2 | ||
| Microsoft | Windows | Windows Server 2008 R2 pour systèmes x64 Service Pack 1 | ||
| Microsoft | Windows | Windows 10 Version 22H2 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 11 Version 22H2 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows Server 2016 | ||
| Microsoft | Windows | Windows Sysinternals Process Monitor | ||
| Microsoft | Windows | Windows Server 2008 R2 pour systèmes x64 Service Pack 1 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2012 R2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 10 Version 22H2 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows 11 Version 22H2 pour systèmes x64 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Windows Server 2022",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 version 21H2 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Remote Desktop client pour Windows Desktop",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 version 21H2 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 22H2 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Sysinternals Process Monitor",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 22H2 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-29373",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29373"
},
{
"name": "CVE-2023-32014",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32014"
},
{
"name": "CVE-2023-32011",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32011"
},
{
"name": "CVE-2023-29372",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29372"
},
{
"name": "CVE-2023-29369",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29369"
},
{
"name": "CVE-2023-32016",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32016"
},
{
"name": "CVE-2023-32010",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32010"
},
{
"name": "CVE-2023-32012",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32012"
},
{
"name": "CVE-2023-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32021"
},
{
"name": "CVE-2023-32015",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32015"
},
{
"name": "CVE-2023-29371",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29371"
},
{
"name": "CVE-2023-29363",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29363"
},
{
"name": "CVE-2023-29367",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29367"
},
{
"name": "CVE-2023-29365",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29365"
},
{
"name": "CVE-2023-32022",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32022"
},
{
"name": "CVE-2023-32013",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32013"
},
{
"name": "CVE-2023-29362",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29362"
},
{
"name": "CVE-2023-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32020"
},
{
"name": "CVE-2023-32019",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32019"
},
{
"name": "CVE-2023-29359",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29359"
},
{
"name": "CVE-2023-29355",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29355"
},
{
"name": "CVE-2023-29352",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29352"
},
{
"name": "CVE-2023-32009",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32009"
},
{
"name": "CVE-2023-29346",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29346"
},
{
"name": "CVE-2023-29368",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29368"
},
{
"name": "CVE-2023-32017",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32017"
},
{
"name": "CVE-2023-29364",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29364"
},
{
"name": "CVE-2023-24937",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24937"
},
{
"name": "CVE-2023-32008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32008"
},
{
"name": "CVE-2023-29351",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29351"
},
{
"name": "CVE-2023-29361",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29361"
},
{
"name": "CVE-2023-29366",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29366"
},
{
"name": "CVE-2023-29360",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29360"
},
{
"name": "CVE-2023-24938",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24938"
},
{
"name": "CVE-2023-29353",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29353"
},
{
"name": "CVE-2023-29370",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29370"
},
{
"name": "CVE-2023-29358",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29358"
},
{
"name": "CVE-2023-32018",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32018"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29358 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29358"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29361 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29361"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32017 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32017"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29367 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29367"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24938 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24938"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29368 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29368"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32012 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32012"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29353 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29353"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32019 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32019"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29369 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29369"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32011 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32011"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29365 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29365"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29373 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29373"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32013 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32013"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29351 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29351"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32016 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32016"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32015 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32015"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29366 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29366"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24937 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24937"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29360 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29364 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29364"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29355 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29355"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32009 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32009"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29346 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29346"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29362 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29362"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32022 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32022"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32020 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32020"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32008 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32008"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29370 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29370"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29359 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29359"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32010 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32010"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29352 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29352"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32014 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32014"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32021 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32021"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29371 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29371"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32018 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32018"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29363 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29363"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29372 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29372"
}
],
"reference": "CERTFR-2023-AVI-0462",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-06-14T00:00:00.000000"
}
],
"risks": [
{
"description": "Usurpation d\u0027identit\u00e9"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eMicrosoft Windows\u003c/span\u003e. Elles permettent \u00e0 un attaquant\nde provoquer une usurpation d\u0027identit\u00e9, une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es, un d\u00e9ni de service, un contournement de la\nfonctionnalit\u00e9 de s\u00e9curit\u00e9, une ex\u00e9cution de code \u00e0 distance et une\n\u00e9l\u00e9vation de privil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Windows",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/"
}
]
}
CERTFR-2023-AVI-0462
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Microsoft Windows. Elles permettent à un attaquant de provoquer une usurpation d'identité, une atteinte à la confidentialité des données, un déni de service, un contournement de la fonctionnalité de sécurité, une exécution de code à distance et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | Windows | Windows Server 2022 | ||
| Microsoft | Windows | Windows Server 2012 | ||
| Microsoft | Windows | Windows 10 pour systèmes x64 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes x64 | ||
| Microsoft | Windows | Windows Server 2019 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2019 | ||
| Microsoft | Windows | Windows Server 2012 R2 | ||
| Microsoft | Windows | Windows Server 2022 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 1607 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes x64 Service Pack 2 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 11 version 21H2 pour systèmes x64 | ||
| Microsoft | Windows | Remote Desktop client pour Windows Desktop | ||
| Microsoft | Windows | Windows Server 2016 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 22H2 pour systèmes x64 | ||
| Microsoft | Windows | Windows 11 version 21H2 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes x64 Service Pack 2 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes 32 bits Service Pack 2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 1607 pour systèmes x64 | ||
| Microsoft | Windows | Windows Server 2012 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes x64 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes 32 bits Service Pack 2 | ||
| Microsoft | Windows | Windows Server 2008 R2 pour systèmes x64 Service Pack 1 | ||
| Microsoft | Windows | Windows 10 Version 22H2 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 11 Version 22H2 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows Server 2016 | ||
| Microsoft | Windows | Windows Sysinternals Process Monitor | ||
| Microsoft | Windows | Windows Server 2008 R2 pour systèmes x64 Service Pack 1 (Server Core installation) | ||
| Microsoft | Windows | Windows Server 2012 R2 (Server Core installation) | ||
| Microsoft | Windows | Windows 10 pour systèmes 32 bits | ||
| Microsoft | Windows | Windows 10 Version 22H2 pour systèmes ARM64 | ||
| Microsoft | Windows | Windows 11 Version 22H2 pour systèmes x64 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Windows Server 2022",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 version 21H2 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Remote Desktop client pour Windows Desktop",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 version 21H2 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 22H2 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Sysinternals Process Monitor",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2 (Server Core installation)",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 pour syst\u00e8mes 32 bits",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes ARM64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 22H2 pour syst\u00e8mes x64",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-29373",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29373"
},
{
"name": "CVE-2023-32014",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32014"
},
{
"name": "CVE-2023-32011",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32011"
},
{
"name": "CVE-2023-29372",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29372"
},
{
"name": "CVE-2023-29369",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29369"
},
{
"name": "CVE-2023-32016",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32016"
},
{
"name": "CVE-2023-32010",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32010"
},
{
"name": "CVE-2023-32012",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32012"
},
{
"name": "CVE-2023-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32021"
},
{
"name": "CVE-2023-32015",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32015"
},
{
"name": "CVE-2023-29371",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29371"
},
{
"name": "CVE-2023-29363",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29363"
},
{
"name": "CVE-2023-29367",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29367"
},
{
"name": "CVE-2023-29365",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29365"
},
{
"name": "CVE-2023-32022",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32022"
},
{
"name": "CVE-2023-32013",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32013"
},
{
"name": "CVE-2023-29362",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29362"
},
{
"name": "CVE-2023-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32020"
},
{
"name": "CVE-2023-32019",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32019"
},
{
"name": "CVE-2023-29359",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29359"
},
{
"name": "CVE-2023-29355",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29355"
},
{
"name": "CVE-2023-29352",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29352"
},
{
"name": "CVE-2023-32009",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32009"
},
{
"name": "CVE-2023-29346",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29346"
},
{
"name": "CVE-2023-29368",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29368"
},
{
"name": "CVE-2023-32017",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32017"
},
{
"name": "CVE-2023-29364",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29364"
},
{
"name": "CVE-2023-24937",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24937"
},
{
"name": "CVE-2023-32008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32008"
},
{
"name": "CVE-2023-29351",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29351"
},
{
"name": "CVE-2023-29361",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29361"
},
{
"name": "CVE-2023-29366",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29366"
},
{
"name": "CVE-2023-29360",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29360"
},
{
"name": "CVE-2023-24938",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24938"
},
{
"name": "CVE-2023-29353",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29353"
},
{
"name": "CVE-2023-29370",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29370"
},
{
"name": "CVE-2023-29358",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29358"
},
{
"name": "CVE-2023-32018",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32018"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29358 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29358"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29361 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29361"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32017 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32017"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29367 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29367"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24938 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24938"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29368 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29368"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32012 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32012"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29353 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29353"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32019 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32019"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29369 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29369"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32011 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32011"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29365 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29365"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29373 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29373"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32013 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32013"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29351 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29351"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32016 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32016"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32015 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32015"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29366 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29366"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24937 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24937"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29360 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29364 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29364"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29355 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29355"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32009 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32009"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29346 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29346"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29362 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29362"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32022 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32022"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32020 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32020"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32008 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32008"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29370 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29370"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29359 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29359"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32010 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32010"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29352 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29352"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32014 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32014"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32021 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32021"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29371 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29371"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-32018 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32018"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29363 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29363"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-29372 du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29372"
}
],
"reference": "CERTFR-2023-AVI-0462",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-06-14T00:00:00.000000"
}
],
"risks": [
{
"description": "Usurpation d\u0027identit\u00e9"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eMicrosoft Windows\u003c/span\u003e. Elles permettent \u00e0 un attaquant\nde provoquer une usurpation d\u0027identit\u00e9, une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es, un d\u00e9ni de service, un contournement de la\nfonctionnalit\u00e9 de s\u00e9curit\u00e9, une ex\u00e9cution de code \u00e0 distance et une\n\u00e9l\u00e9vation de privil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Windows",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft du 13 juin 2023",
"url": "https://msrc.microsoft.com/update-guide/"
}
]
}
Title
Уязвимость драйвера TPM Device операционных систем Windows, позволяющая нарушителю повысить свои привилегии
Description
Уязвимость драйвера TPM Device операционных систем Windows связана с настройками прав доступа по умолчанию. Эксплуатация уязвимости может позволить нарушителю повысить свои привилегии
Severity
Vendor
Microsoft Corp
Software Name
Windows 10 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 10 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows Server 2022 (Server Core installation), Windows 10 21H2, Windows 11 22H2, Windows 10 22H2, Windows 11 21H2
Software Version
- (Windows 10 1607), - (Windows Server 2016), - (Windows Server 2016 (Server Core installation)), - (Windows 10 1809), - (Windows Server 2019), - (Windows Server 2019 (Server Core installation)), - (Windows Server 2022), - (Windows Server 2022 (Server Core installation)), - (Windows 10 21H2), - (Windows 11 22H2), - (Windows 10 22H2), - (Windows 11 21H2)
Possible Mitigations
Использование рекомендаций производителя:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360
Reference
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360
https://vuldb.com/ru/?id.231397
https://www.cisa.gov/sites/default/files/csv/known_exploited_vulnerabilities.csv
https://github.com/MzHmO/Exploit-Street/tree/main/2023/CVE-2023-29360
CWE
CWE-276
{
"CVSS 2.0": "AV:L/AC:L/Au:S/C:C/I:C/A:C",
"CVSS 3.0": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Microsoft Corp",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Windows 10 1607), - (Windows Server 2016), - (Windows Server 2016 (Server Core installation)), - (Windows 10 1809), - (Windows Server 2019), - (Windows Server 2019 (Server Core installation)), - (Windows Server 2022), - (Windows Server 2022 (Server Core installation)), - (Windows 10 21H2), - (Windows 11 22H2), - (Windows 10 22H2), - (Windows 11 21H2)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "13.06.2023",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "12.12.2024",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "23.06.2023",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2023-03333",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2023-29360",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Windows 10 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 10 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows Server 2022 (Server Core installation), Windows 10 21H2, Windows 11 22H2, Windows 10 22H2, Windows 11 21H2",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Microsoft Corp Windows 10 1607 - 64-bit, Microsoft Corp Windows 10 1607 - 32-bit, Microsoft Corp Windows Server 2016 - , Microsoft Corp Windows Server 2016 (Server Core installation) - , Microsoft Corp Windows 10 1809 - 64-bit, Microsoft Corp Windows 10 1809 - 32-bit, Microsoft Corp Windows Server 2019 - , Microsoft Corp Windows Server 2019 (Server Core installation) - , Microsoft Corp Windows 10 1809 - ARM64, Microsoft Corp Windows Server 2022 - , Microsoft Corp Windows Server 2022 (Server Core installation) - , Microsoft Corp Windows 10 21H2 - 64-bit, Microsoft Corp Windows 10 21H2 - 32-bit, Microsoft Corp Windows 10 21H2 - ARM64, Microsoft Corp Windows 11 22H2 - 64-bit, Microsoft Corp Windows 11 22H2 - ARM64, Microsoft Corp Windows 10 22H2 - 64-bit, Microsoft Corp Windows 10 22H2 - ARM64, Microsoft Corp Windows 10 22H2 - 32-bit, Microsoft Corp Windows 11 21H2 - 64-bit, Microsoft Corp Windows 11 21H2 - ARM64",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 TPM Device \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c Windows, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0432 \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u0435",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u044b\u0435 \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u044b\u0435 \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u044f (CWE-276)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 TPM Device \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c Windows \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0430\u043c\u0438 \u043f\u0440\u0430\u0432 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043f\u043e \u0443\u043c\u043e\u043b\u0447\u0430\u043d\u0438\u044e. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360\nhttps://vuldb.com/ru/?id.231397\nhttps://www.cisa.gov/sites/default/files/csv/known_exploited_vulnerabilities.csv\nhttps://github.com/MzHmO/Exploit-Street/tree/main/2023/CVE-2023-29360",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-276",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)"
}
FKIE_CVE-2023-29360
Vulnerability from fkie_nvd - Published: 2023-06-14 00:15 - Updated: 2026-06-17 05:49
Severity
Summary
Microsoft Streaming Service Elevation of Privilege Vulnerability
References
| URL | Tags | ||
|---|---|---|---|
| secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360 | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360 | Patch, Vendor Advisory | |
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-29360 | US Government Resource |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| microsoft | windows_10_1607 | * | |
| microsoft | windows_10_1607 | * | |
| microsoft | windows_10_1809 | * | |
| microsoft | windows_10_21h2 | * | |
| microsoft | windows_10_22h2 | * | |
| microsoft | windows_11_21h2 | * | |
| microsoft | windows_11_22h2 | * | |
| microsoft | windows_server_2016 | * | |
| microsoft | windows_server_2019 | * | |
| microsoft | windows_server_2022 | * |
{
"affected": [
{
"affectedData": [
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Windows 10 Version 1809",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.17763.4499",
"status": "affected",
"version": "10.0.17763.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"ARM64-based Systems"
],
"product": "Windows 10 Version 1809",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.17763.4499",
"status": "affected",
"version": "10.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2019",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.17763.4499",
"status": "affected",
"version": "10.0.17763.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2019 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.17763.4499",
"status": "affected",
"version": "10.0.17763.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2022",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.20348.1787",
"status": "affected",
"version": "10.0.20348.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems",
"ARM64-based Systems"
],
"product": "Windows 11 version 21H2",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.22000.2057",
"status": "affected",
"version": "10.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"ARM64-based Systems",
"x64-based Systems"
],
"product": "Windows 10 Version 21H2",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.19044.3086",
"status": "affected",
"version": "10.0.19043.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"ARM64-based Systems",
"x64-based Systems"
],
"product": "Windows 11 version 22H2",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.22621.1848",
"status": "affected",
"version": "10.0.22621.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems",
"ARM64-based Systems",
"32-bit Systems"
],
"product": "Windows 10 Version 22H2",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.19045.3086",
"status": "affected",
"version": "10.0.19045.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Windows 10 Version 1607",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.14393.5989",
"status": "affected",
"version": "10.0.14393.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2016",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.14393.5989",
"status": "affected",
"version": "10.0.14393.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Windows Server 2016 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "10.0.14393.5989",
"status": "affected",
"version": "10.0.14393.0",
"versionType": "custom"
}
]
}
],
"source": "secure@microsoft.com"
}
],
"cisaActionDue": "2024-03-21",
"cisaExploitAdd": "2024-02-29",
"cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
"cisaVulnerabilityName": "Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability",
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "CB89DC1F-2A03-4235-B6FD-EF80FF8B3C1B",
"versionEndExcluding": "10.0.14393.5989",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "E5B21E84-205B-4407-90AF-4775E5D2E882",
"versionEndExcluding": "10.0.14393.5989",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*",
"matchCriteriaId": "92D1F996-A2DF-4163-B49B-F1A340D7E207",
"versionEndExcluding": "10.0.17763.4499",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DE69891C-7531-4FC0-9A68-D49E9ADB782E",
"versionEndExcluding": "10.0.19044.3086",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F9CF581A-4B1C-4278-A9DD-1E8D8708C91D",
"versionEndExcluding": "10.0.19045.3086",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "15BA332E-5AD9-4586-9322-56658420EC3C",
"versionEndExcluding": "10.0.22000.2057",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "97E9384D-0189-4153-ACE5-E6A698DB6609",
"versionEndExcluding": "10.0.22621.1848",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3EB89BF2-200D-41E0-8336-FF6417B49180",
"versionEndExcluding": "10.0.14393.5989",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BABFDA5F-B3B7-4444-8C02-57341378971C",
"versionEndExcluding": "10.0.17763.4499",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "147B80EA-07E9-4933-BF06-C3328D7FCFC2",
"versionEndExcluding": "10.0.20348.1784",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Microsoft Streaming Service Elevation of Privilege Vulnerability"
}
],
"id": "CVE-2023-29360",
"lastModified": "2026-06-17T05:49:53.300",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.5,
"impactScore": 5.9,
"source": "secure@microsoft.com",
"type": "Secondary"
}
],
"ssvcV203": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"ssvcData": {
"id": "CVE-2023-29360",
"options": [
{
"exploitation": "active"
},
{
"automatable": "no"
},
{
"technicalImpact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-03-01T05:00:47.855853Z",
"version": "2.0.3"
}
}
]
},
"published": "2023-06-14T00:15:10.067",
"references": [
{
"source": "secure@microsoft.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"tags": [
"US Government Resource"
],
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-29360"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-822"
}
],
"source": "secure@microsoft.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-MFPJ-F925-V5GX
Vulnerability from github – Published: 2023-06-14 00:30 – Updated: 2025-10-22 00:32
VLAI
Details
Windows TPM Device Driver Elevation of Privilege Vulnerability
Severity
7.8 (High)
{
"affected": [],
"aliases": [
"CVE-2023-29360"
],
"database_specific": {
"cwe_ids": [
"CWE-822"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2023-06-14T00:15:10Z",
"severity": "HIGH"
},
"details": "Windows TPM Device Driver Elevation of Privilege Vulnerability",
"id": "GHSA-mfpj-f925-v5gx",
"modified": "2025-10-22T00:32:44Z",
"published": "2023-06-14T00:30:39Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29360"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
},
{
"type": "WEB",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-29360"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2023-29360
Vulnerability from gsd - Updated: 2023-12-13 01:20Details
Microsoft Streaming Service Elevation of Privilege Vulnerability
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2023-29360",
"id": "GSD-2023-29360"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2023-29360"
],
"details": "Microsoft Streaming Service Elevation of Privilege Vulnerability",
"id": "GSD-2023-29360",
"modified": "2023-12-13T01:20:57.179695Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secure@microsoft.com",
"ID": "CVE-2023-29360",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Windows 10 Version 1809",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.17763.4499"
}
]
}
},
{
"product_name": "Windows Server 2019",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.17763.4499"
}
]
}
},
{
"product_name": "Windows Server 2019 (Server Core installation)",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.17763.4499"
}
]
}
},
{
"product_name": "Windows Server 2022",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.20348.1787"
}
]
}
},
{
"product_name": "Windows 11 version 21H2",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.22000.2057"
}
]
}
},
{
"product_name": "Windows 10 Version 21H2",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.19044.3086"
}
]
}
},
{
"product_name": "Windows 11 version 22H2",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.22621.1848"
}
]
}
},
{
"product_name": "Windows 10 Version 22H2",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.19045.3086"
}
]
}
},
{
"product_name": "Windows 10 Version 1607",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.14393.5989"
}
]
}
},
{
"product_name": "Windows Server 2016",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.14393.5989"
}
]
}
},
{
"product_name": "Windows Server 2016 (Server Core installation)",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "10.0.0",
"version_value": "10.0.14393.5989"
}
]
}
}
]
},
"vendor_name": "Microsoft"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Microsoft Streaming Service Elevation of Privilege Vulnerability"
}
]
},
"impact": {
"cvss": [
{
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360",
"refsource": "MISC",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
}
]
}
},
"nvd.nist.gov": {
"cve": {
"cisaActionDue": "2024-03-21",
"cisaExploitAdd": "2024-02-29",
"cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
"cisaVulnerabilityName": "Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability",
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "CB89DC1F-2A03-4235-B6FD-EF80FF8B3C1B",
"versionEndExcluding": "10.0.14393.5989",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "E5B21E84-205B-4407-90AF-4775E5D2E882",
"versionEndExcluding": "10.0.14393.5989",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*",
"matchCriteriaId": "C5F955D6-1553-4C59-9DD0-C875FB3D1199",
"versionEndExcluding": "10.0.17763.4499",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "F77DB019-5063-4534-9BF2-DF51CD20AB47",
"versionEndExcluding": "10.0.17763.4499",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "70A25108-6F9B-4D9A-8776-25F869CD95A5",
"versionEndExcluding": "10.0.17763.4499",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:arm64:*",
"matchCriteriaId": "3F9AC8FD-1619-4C98-9B43-19530C881A30",
"versionEndExcluding": "10.0.19044.3086",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "42479592-3303-4357-8476-7E1BFE5D76FF",
"versionEndExcluding": "10.0.19044.3086",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "9C1FB4E1-46F5-4B84-8233-A8853738CE58",
"versionEndExcluding": "10.0.19044.3086",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:arm64:*",
"matchCriteriaId": "639E22EE-E3D6-4809-B7F3-6704D6A947FE",
"versionEndExcluding": "10.0.19045.3086",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "C165A870-6438-4D18-9748-EA09B1CB0611",
"versionEndExcluding": "10.0.19045.3086",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "5E6EE10A-DF34-4B88-8515-C411495F149D",
"versionEndExcluding": "10.0.19045.3086",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:arm64:*",
"matchCriteriaId": "3C51F6A7-2518-4DF2-93E7-4C19914F4063",
"versionEndExcluding": "10.0.22000.2057",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "FFAF133F-F2A1-4BCC-B901-5C0A775BEC81",
"versionEndExcluding": "10.0.22000.2057",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:arm64:*",
"matchCriteriaId": "886BF41E-670B-4B8B-ACDE-EB5C3C25EDC3",
"versionEndExcluding": "10.0.22621.1848",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "0D900723-68F0-4973-BE03-41A261869D6D",
"versionEndExcluding": "10.0.22621.1848",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3EB89BF2-200D-41E0-8336-FF6417B49180",
"versionEndExcluding": "10.0.14393.5989",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BABFDA5F-B3B7-4444-8C02-57341378971C",
"versionEndExcluding": "10.0.17763.4499",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "147B80EA-07E9-4933-BF06-C3328D7FCFC2",
"versionEndExcluding": "10.0.20348.1784",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Microsoft Streaming Service Elevation of Privilege Vulnerability"
}
],
"id": "CVE-2023-29360",
"lastModified": "2024-03-04T14:58:54.230",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.5,
"impactScore": 5.9,
"source": "secure@microsoft.com",
"type": "Primary"
}
]
},
"published": "2023-06-14T00:15:10.067",
"references": [
{
"source": "secure@microsoft.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
}
}
}
MSRC_CVE-2023-29360
Vulnerability from csaf_microsoft - Published: 2023-06-13 07:00 - Updated: 2023-08-10 07:00Summary
Microsoft Streaming Service Elevation of Privilege Vulnerability
Severity
Important
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
Customer Action: Required. The vulnerability documented by this CVE requires customer action to resolve.
CWE-822
- Untrusted Pointer Dereference
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Windows Server 2016 10.0.14393.5989
Windows Server 2016
|
10.0.14393.5989 | ||
|
Windows 10 Version 1607 for 32-bit Systems 10.0.14393.5989
Windows 10 Version 1607 for 32-bit Systems
|
10.0.14393.5989 | ||
|
Windows 10 Version 1607 for x64-based Systems 10.0.14393.5989
Windows 10 Version 1607 for x64-based Systems
|
10.0.14393.5989 | ||
|
Windows Server 2016 (Server Core installation) 10.0.14393.5989
Windows Server 2016 (Server Core installation)
|
10.0.14393.5989 | ||
|
Windows 10 Version 1809 for 32-bit Systems 10.0.17763.4499
Windows 10 Version 1809 for 32-bit Systems
|
10.0.17763.4499 | ||
|
Windows 10 Version 1809 for x64-based Systems 10.0.17763.4499
Windows 10 Version 1809 for x64-based Systems
|
10.0.17763.4499 | ||
|
Windows 10 Version 1809 for ARM64-based Systems 10.0.17763.4499
Windows 10 Version 1809 for ARM64-based Systems
|
10.0.17763.4499 | ||
|
Windows Server 2019 10.0.17763.4499
Windows Server 2019
|
10.0.17763.4499 | ||
|
Windows Server 2019 (Server Core installation) 10.0.17763.4499
Windows Server 2019 (Server Core installation)
|
10.0.17763.4499 | ||
|
Windows Server 2022 10.0.20348.1787
Windows Server 2022
|
10.0.20348.1787 | ||
|
Windows Server 2022 (Server Core installation) 10.0.20348.1787
Windows Server 2022 (Server Core installation)
|
10.0.20348.1787 | ||
|
Windows 11 version 21H2 for x64-based Systems 10.0.22000.2057
Windows 11 version 21H2 for x64-based Systems
|
10.0.22000.2057 | ||
|
Windows 11 version 21H2 for ARM64-based Systems 10.0.22000.2057
Windows 11 version 21H2 for ARM64-based Systems
|
10.0.22000.2057 | ||
|
Windows 10 Version 21H2 for 32-bit Systems 10.0.19044.3086
Windows 10 Version 21H2 for 32-bit Systems
|
10.0.19044.3086 | ||
|
Windows 10 Version 21H2 for ARM64-based Systems 10.0.19044.3086
Windows 10 Version 21H2 for ARM64-based Systems
|
10.0.19044.3086 | ||
|
Windows 10 Version 21H2 for x64-based Systems 10.0.19044.3086
Windows 10 Version 21H2 for x64-based Systems
|
10.0.19044.3086 | ||
|
Windows 11 Version 22H2 for ARM64-based Systems 10.0.22621.1848
Windows 11 Version 22H2 for ARM64-based Systems
|
10.0.22621.1848 | ||
|
Windows 11 Version 22H2 for x64-based Systems 10.0.22621.1848
Windows 11 Version 22H2 for x64-based Systems
|
10.0.22621.1848 | ||
|
Windows 10 Version 22H2 for x64-based Systems 10.0.19045.3086
Windows 10 Version 22H2 for x64-based Systems
|
10.0.19045.3086 | ||
|
Windows 10 Version 22H2 for ARM64-based Systems 10.0.19045.3086
Windows 10 Version 22H2 for ARM64-based Systems
|
10.0.19045.3086 | ||
|
Windows 10 Version 22H2 for 32-bit Systems 10.0.19045.3086
Windows 10 Version 22H2 for 32-bit Systems
|
10.0.19045.3086 |
Known affected
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Windows 10 Version 22H2 for 32-bit Systems <10.0.19045.3086
Windows 10 Version 22H2 for 32-bit Systems
|
<10.0.19045.3086 |
Vendor Fix
fix
|
|
|
Windows 10 Version 22H2 for ARM64-based Systems <10.0.19045.3086
Windows 10 Version 22H2 for ARM64-based Systems
|
<10.0.19045.3086 |
Vendor Fix
fix
|
|
|
Windows 10 Version 22H2 for x64-based Systems <10.0.19045.3086
Windows 10 Version 22H2 for x64-based Systems
|
<10.0.19045.3086 |
Vendor Fix
fix
|
|
|
Windows 11 Version 22H2 for x64-based Systems <10.0.22621.1848
Windows 11 Version 22H2 for x64-based Systems
|
<10.0.22621.1848 |
Vendor Fix
fix
|
|
|
Windows 11 Version 22H2 for ARM64-based Systems <10.0.22621.1848
Windows 11 Version 22H2 for ARM64-based Systems
|
<10.0.22621.1848 |
Vendor Fix
fix
|
|
|
Windows 10 Version 21H2 for x64-based Systems <10.0.19044.3086
Windows 10 Version 21H2 for x64-based Systems
|
<10.0.19044.3086 |
Vendor Fix
fix
|
|
|
Windows 10 Version 21H2 for ARM64-based Systems <10.0.19044.3086
Windows 10 Version 21H2 for ARM64-based Systems
|
<10.0.19044.3086 |
Vendor Fix
fix
|
|
|
Windows 10 Version 21H2 for 32-bit Systems <10.0.19044.3086
Windows 10 Version 21H2 for 32-bit Systems
|
<10.0.19044.3086 |
Vendor Fix
fix
|
|
|
Windows 11 version 21H2 for ARM64-based Systems <10.0.22000.2057
Windows 11 version 21H2 for ARM64-based Systems
|
<10.0.22000.2057 |
Vendor Fix
fix
|
|
|
Windows 11 version 21H2 for x64-based Systems <10.0.22000.2057
Windows 11 version 21H2 for x64-based Systems
|
<10.0.22000.2057 |
Vendor Fix
fix
|
|
|
Windows Server 2022 (Server Core installation) <10.0.20348.1787
Windows Server 2022 (Server Core installation)
|
<10.0.20348.1787 |
Vendor Fix
fix
Vendor Fix
fix
|
|
|
Windows Server 2022 <10.0.20348.1787
Windows Server 2022
|
<10.0.20348.1787 |
Vendor Fix
fix
Vendor Fix
fix
|
|
|
Windows Server 2019 (Server Core installation) <10.0.17763.4499
Windows Server 2019 (Server Core installation)
|
<10.0.17763.4499 |
Vendor Fix
fix
|
|
|
Windows Server 2019 <10.0.17763.4499
Windows Server 2019
|
<10.0.17763.4499 |
Vendor Fix
fix
|
|
|
Windows 10 Version 1809 for ARM64-based Systems <10.0.17763.4499
Windows 10 Version 1809 for ARM64-based Systems
|
<10.0.17763.4499 |
Vendor Fix
fix
|
|
|
Windows 10 Version 1809 for x64-based Systems <10.0.17763.4499
Windows 10 Version 1809 for x64-based Systems
|
<10.0.17763.4499 |
Vendor Fix
fix
|
|
|
Windows 10 Version 1809 for 32-bit Systems <10.0.17763.4499
Windows 10 Version 1809 for 32-bit Systems
|
<10.0.17763.4499 |
Vendor Fix
fix
|
|
|
Windows Server 2016 (Server Core installation) <10.0.14393.5989
Windows Server 2016 (Server Core installation)
|
<10.0.14393.5989 |
Vendor Fix
fix
|
|
|
Windows 10 Version 1607 for x64-based Systems <10.0.14393.5989
Windows 10 Version 1607 for x64-based Systems
|
<10.0.14393.5989 |
Vendor Fix
fix
|
|
|
Windows 10 Version 1607 for 32-bit Systems <10.0.14393.5989
Windows 10 Version 1607 for 32-bit Systems
|
<10.0.14393.5989 |
Vendor Fix
fix
|
|
|
Windows Server 2016 <10.0.14393.5989
Windows Server 2016
|
<10.0.14393.5989 |
Vendor Fix
fix
|
Threats
Impact
Elevation of Privilege
Exploit Status
Exploited:No;Latest Software Release:Exploitation More Likely
References
7 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/update-guide/vulnerabi… | self |
| https://msrc.microsoft.com/csaf/2023/msrc_cve-202… | self |
| https://www.microsoft.com/en-us/msrc/exploitabili… | external |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/update-guide/vulnerabi… | self |
| https://msrc.microsoft.com/update-guide/vulnerabi… | self |
Acknowledgments
Thomas Imbert (@masthoon) from Synacktiv (@Synacktiv) Working with <a href=https://www.zerodayinitiative.com/>Trend Micro Zero Day Initiative</a>
{
"document": {
"acknowledgments": [
{
"names": [
"Thomas Imbert (@masthoon) from Synacktiv (@Synacktiv) Working with \u003ca href=https://www.zerodayinitiative.com/\u003eTrend Micro Zero Day Initiative\u003c/a\u003e\n\n "
]
}
],
"aggregate_severity": {
"namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
},
{
"category": "general",
"text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
"title": "Customer Action"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2023-29360 Microsoft Streaming Service Elevation of Privilege Vulnerability - HTML",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
},
{
"category": "self",
"summary": "CVE-2023-29360 Microsoft Streaming Service Elevation of Privilege Vulnerability - CSAF",
"url": "https://msrc.microsoft.com/csaf/2023/msrc_cve-2023-29360.json"
},
{
"category": "external",
"summary": "Microsoft Exploitability Index",
"url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Microsoft Streaming Service Elevation of Privilege Vulnerability",
"tracking": {
"current_release_date": "2023-08-10T07:00:00.000Z",
"generator": {
"date": "2025-01-01T01:43:29.870Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2023-29360",
"initial_release_date": "2023-06-13T07:00:00.000Z",
"revision_history": [
{
"date": "2023-06-13T07:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2023-08-10T07:00:00.000Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Corrected CVE title and updated one or more CVSS scores for the affected products. These are informational changes only."
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.17763.4499",
"product": {
"name": "Windows 10 Version 1809 for 32-bit Systems \u003c10.0.17763.4499",
"product_id": "17"
}
},
{
"category": "product_version",
"name": "10.0.17763.4499",
"product": {
"name": "Windows 10 Version 1809 for 32-bit Systems 10.0.17763.4499",
"product_id": "11568"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 1809 for 32-bit Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.17763.4499",
"product": {
"name": "Windows 10 Version 1809 for x64-based Systems \u003c10.0.17763.4499",
"product_id": "16"
}
},
{
"category": "product_version",
"name": "10.0.17763.4499",
"product": {
"name": "Windows 10 Version 1809 for x64-based Systems 10.0.17763.4499",
"product_id": "11569"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 1809 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.17763.4499",
"product": {
"name": "Windows 10 Version 1809 for ARM64-based Systems \u003c10.0.17763.4499",
"product_id": "15"
}
},
{
"category": "product_version",
"name": "10.0.17763.4499",
"product": {
"name": "Windows 10 Version 1809 for ARM64-based Systems 10.0.17763.4499",
"product_id": "11570"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 1809 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.17763.4499",
"product": {
"name": "Windows Server 2019 \u003c10.0.17763.4499",
"product_id": "14"
}
},
{
"category": "product_version",
"name": "10.0.17763.4499",
"product": {
"name": "Windows Server 2019 10.0.17763.4499",
"product_id": "11571"
}
}
],
"category": "product_name",
"name": "Windows Server 2019"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.17763.4499",
"product": {
"name": "Windows Server 2019 (Server Core installation) \u003c10.0.17763.4499",
"product_id": "13"
}
},
{
"category": "product_version",
"name": "10.0.17763.4499",
"product": {
"name": "Windows Server 2019 (Server Core installation) 10.0.17763.4499",
"product_id": "11572"
}
}
],
"category": "product_name",
"name": "Windows Server 2019 (Server Core installation)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.20348.1787",
"product": {
"name": "Windows Server 2022 \u003c10.0.20348.1787",
"product_id": "12"
}
},
{
"category": "product_version",
"name": "10.0.20348.1787",
"product": {
"name": "Windows Server 2022 10.0.20348.1787",
"product_id": "11923"
}
}
],
"category": "product_name",
"name": "Windows Server 2022"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.20348.1787",
"product": {
"name": "Windows Server 2022 (Server Core installation) \u003c10.0.20348.1787",
"product_id": "11"
}
},
{
"category": "product_version",
"name": "10.0.20348.1787",
"product": {
"name": "Windows Server 2022 (Server Core installation) 10.0.20348.1787",
"product_id": "11924"
}
}
],
"category": "product_name",
"name": "Windows Server 2022 (Server Core installation)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.22000.2057",
"product": {
"name": "Windows 11 version 21H2 for x64-based Systems \u003c10.0.22000.2057",
"product_id": "10"
}
},
{
"category": "product_version",
"name": "10.0.22000.2057",
"product": {
"name": "Windows 11 version 21H2 for x64-based Systems 10.0.22000.2057",
"product_id": "11926"
}
}
],
"category": "product_name",
"name": "Windows 11 version 21H2 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.22000.2057",
"product": {
"name": "Windows 11 version 21H2 for ARM64-based Systems \u003c10.0.22000.2057",
"product_id": "9"
}
},
{
"category": "product_version",
"name": "10.0.22000.2057",
"product": {
"name": "Windows 11 version 21H2 for ARM64-based Systems 10.0.22000.2057",
"product_id": "11927"
}
}
],
"category": "product_name",
"name": "Windows 11 version 21H2 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.19044.3086",
"product": {
"name": "Windows 10 Version 21H2 for 32-bit Systems \u003c10.0.19044.3086",
"product_id": "8"
}
},
{
"category": "product_version",
"name": "10.0.19044.3086",
"product": {
"name": "Windows 10 Version 21H2 for 32-bit Systems 10.0.19044.3086",
"product_id": "11929"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 21H2 for 32-bit Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.19044.3086",
"product": {
"name": "Windows 10 Version 21H2 for ARM64-based Systems \u003c10.0.19044.3086",
"product_id": "7"
}
},
{
"category": "product_version",
"name": "10.0.19044.3086",
"product": {
"name": "Windows 10 Version 21H2 for ARM64-based Systems 10.0.19044.3086",
"product_id": "11930"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 21H2 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.19044.3086",
"product": {
"name": "Windows 10 Version 21H2 for x64-based Systems \u003c10.0.19044.3086",
"product_id": "6"
}
},
{
"category": "product_version",
"name": "10.0.19044.3086",
"product": {
"name": "Windows 10 Version 21H2 for x64-based Systems 10.0.19044.3086",
"product_id": "11931"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 21H2 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.22621.1848",
"product": {
"name": "Windows 11 Version 22H2 for ARM64-based Systems \u003c10.0.22621.1848",
"product_id": "5"
}
},
{
"category": "product_version",
"name": "10.0.22621.1848",
"product": {
"name": "Windows 11 Version 22H2 for ARM64-based Systems 10.0.22621.1848",
"product_id": "12085"
}
}
],
"category": "product_name",
"name": "Windows 11 Version 22H2 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.22621.1848",
"product": {
"name": "Windows 11 Version 22H2 for x64-based Systems \u003c10.0.22621.1848",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "10.0.22621.1848",
"product": {
"name": "Windows 11 Version 22H2 for x64-based Systems 10.0.22621.1848",
"product_id": "12086"
}
}
],
"category": "product_name",
"name": "Windows 11 Version 22H2 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.19045.3086",
"product": {
"name": "Windows 10 Version 22H2 for x64-based Systems \u003c10.0.19045.3086",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "10.0.19045.3086",
"product": {
"name": "Windows 10 Version 22H2 for x64-based Systems 10.0.19045.3086",
"product_id": "12097"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 22H2 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.19045.3086",
"product": {
"name": "Windows 10 Version 22H2 for ARM64-based Systems \u003c10.0.19045.3086",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "10.0.19045.3086",
"product": {
"name": "Windows 10 Version 22H2 for ARM64-based Systems 10.0.19045.3086",
"product_id": "12098"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 22H2 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.19045.3086",
"product": {
"name": "Windows 10 Version 22H2 for 32-bit Systems \u003c10.0.19045.3086",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "10.0.19045.3086",
"product": {
"name": "Windows 10 Version 22H2 for 32-bit Systems 10.0.19045.3086",
"product_id": "12099"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 22H2 for 32-bit Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.14393.5989",
"product": {
"name": "Windows 10 Version 1607 for 32-bit Systems \u003c10.0.14393.5989",
"product_id": "20"
}
},
{
"category": "product_version",
"name": "10.0.14393.5989",
"product": {
"name": "Windows 10 Version 1607 for 32-bit Systems 10.0.14393.5989",
"product_id": "10852"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 1607 for 32-bit Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.14393.5989",
"product": {
"name": "Windows 10 Version 1607 for x64-based Systems \u003c10.0.14393.5989",
"product_id": "19"
}
},
{
"category": "product_version",
"name": "10.0.14393.5989",
"product": {
"name": "Windows 10 Version 1607 for x64-based Systems 10.0.14393.5989",
"product_id": "10853"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 1607 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.14393.5989",
"product": {
"name": "Windows Server 2016 \u003c10.0.14393.5989",
"product_id": "21"
}
},
{
"category": "product_version",
"name": "10.0.14393.5989",
"product": {
"name": "Windows Server 2016 10.0.14393.5989",
"product_id": "10816"
}
}
],
"category": "product_name",
"name": "Windows Server 2016"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.14393.5989",
"product": {
"name": "Windows Server 2016 (Server Core installation) \u003c10.0.14393.5989",
"product_id": "18"
}
},
{
"category": "product_version",
"name": "10.0.14393.5989",
"product": {
"name": "Windows Server 2016 (Server Core installation) 10.0.14393.5989",
"product_id": "10855"
}
}
],
"category": "product_name",
"name": "Windows Server 2016 (Server Core installation)"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-29360",
"cwe": {
"id": "CWE-822",
"name": "Untrusted Pointer Dereference"
},
"notes": [
{
"category": "general",
"text": "Microsoft",
"title": "Assigning CNA"
},
{
"category": "faq",
"text": "An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.",
"title": "What privileges could be gained by an attacker who successfully exploited this vulnerability?"
}
],
"product_status": {
"fixed": [
"10816",
"10852",
"10853",
"10855",
"11568",
"11569",
"11570",
"11571",
"11572",
"11923",
"11924",
"11926",
"11927",
"11929",
"11930",
"11931",
"12085",
"12086",
"12097",
"12098",
"12099"
],
"known_affected": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-29360 Microsoft Streaming Service Elevation of Privilege Vulnerability - HTML",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
},
{
"category": "self",
"summary": "CVE-2023-29360 Microsoft Streaming Service Elevation of Privilege Vulnerability - CSAF",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2023-06-13T07:00:00.000Z",
"details": "10.0.17763.4499:Security Update:https://support.microsoft.com/help/5027222",
"product_ids": [
"17",
"16",
"15",
"14",
"13"
],
"url": "https://support.microsoft.com/help/5027222"
},
{
"category": "vendor_fix",
"date": "2023-06-13T07:00:00.000Z",
"details": "10.0.20348.1787:Security Update:https://support.microsoft.com/help/5027225",
"product_ids": [
"12",
"11"
],
"url": "https://support.microsoft.com/help/5027225"
},
{
"category": "vendor_fix",
"date": "2023-06-13T07:00:00.000Z",
"details": "10.0.20348.1784:Security Hotpatch Update:https://support.microsoft.com/help/5027319",
"product_ids": [
"12",
"11"
],
"url": "https://support.microsoft.com/help/5027319"
},
{
"category": "vendor_fix",
"date": "2023-06-13T07:00:00.000Z",
"details": "10.0.22000.2057:Security Update:https://support.microsoft.com/help/5027223",
"product_ids": [
"10",
"9"
],
"url": "https://support.microsoft.com/help/5027223"
},
{
"category": "vendor_fix",
"date": "2023-06-13T07:00:00.000Z",
"details": "10.0.19044.3086:Security Update:https://support.microsoft.com/help/5027215",
"product_ids": [
"8",
"7",
"6"
],
"url": "https://support.microsoft.com/help/5027215"
},
{
"category": "vendor_fix",
"date": "2023-06-13T07:00:00.000Z",
"details": "10.0.22621.1848:Security Update:https://support.microsoft.com/help/5027231",
"product_ids": [
"5",
"4"
],
"url": "https://support.microsoft.com/help/5027231"
},
{
"category": "vendor_fix",
"date": "2023-06-13T07:00:00.000Z",
"details": "10.0.19045.3086:Security Update:https://support.microsoft.com/help/5027215",
"product_ids": [
"3",
"2",
"1"
],
"url": "https://support.microsoft.com/help/5027215"
},
{
"category": "vendor_fix",
"date": "2023-06-13T07:00:00.000Z",
"details": "10.0.14393.5989:Security Update:https://support.microsoft.com/help/5027219",
"product_ids": [
"20",
"19",
"21",
"18"
],
"url": "https://support.microsoft.com/help/5027219"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"exploitCodeMaturity": "UNPROVEN",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"remediationLevel": "OFFICIAL_FIX",
"reportConfidence": "CONFIRMED",
"scope": "UNCHANGED",
"temporalScore": 7.3,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21"
]
}
],
"threats": [
{
"category": "impact",
"details": "Elevation of Privilege"
},
{
"category": "exploit_status",
"details": "Exploited:No;Latest Software Release:Exploitation More Likely"
}
],
"title": "Microsoft Streaming Service Elevation of Privilege Vulnerability"
}
]
}
WID-SEC-W-2023-1442
Vulnerability from csaf_certbund - Published: 2023-06-13 22:00 - Updated: 2024-02-29 23:00Summary
Microsoft Windows und Microsoft Windows Server: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Windows ist ein Betriebssystem von Microsoft.
Angriff: Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu Manipulieren und einen Denial-of-Service-Zustand zu verursachen.
Betroffene Betriebssysteme: - Windows
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server 2008 Service Pack 2
|
cpe:/o:microsoft:windows_server_2008::sp2
|
SP2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server 2008 R2
|
cpe:/o:microsoft:windows_server_2008_r2:sp_1
|
SP1 | |
|
Microsoft Windows Remote Desktop client for Desktop
Microsoft / Windows
|
cpe:/o:microsoft:windows:remote_desktop_client_for_desktop
|
Remote Desktop client for Desktop | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Hitachi Storage Virtual Storage Platform
Hitachi / Storage
|
cpe:/h:hitachi:storage:virtual_storage_platform
|
Virtual Storage Platform | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 version 21H2
Microsoft / Windows 11
|
version 21H2 | ||
|
Microsoft Windows Server 2022
Microsoft
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 |
References
5 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Windows ist ein Betriebssystem von Microsoft.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu Manipulieren und einen Denial-of-Service-Zustand zu verursachen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-1442 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1442.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-1442 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1442"
},
{
"category": "external",
"summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates vom 2023-06-13",
"url": "https://msrc.microsoft.com/update-guide"
},
{
"category": "external",
"summary": "Hitachi Vulnerability Information HITACHI-SEC-2023-306 vom 2023-09-26",
"url": "https://www.hitachi.com/products/it/storage-solutions/sec_info/2023/06.html"
},
{
"category": "external",
"summary": "CISA Known Exploited Vulnerabilities Catalog vom 2024-02-29",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"source_lang": "en-US",
"title": "Microsoft Windows und Microsoft Windows Server: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-02-29T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:52:23.219+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2023-1442",
"initial_release_date": "2023-06-13T22:00:00.000+00:00",
"revision_history": [
{
"date": "2023-06-13T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2023-09-25T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von HITACHI aufgenommen"
},
{
"date": "2024-02-29T23:00:00.000+00:00",
"number": "3",
"summary": "Exploit-Hinweis f\u00fcr CVE-2023-29360 aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "Virtual Storage Platform",
"product": {
"name": "Hitachi Storage Virtual Storage Platform",
"product_id": "T020487",
"product_identification_helper": {
"cpe": "cpe:/h:hitachi:storage:virtual_storage_platform"
}
}
}
],
"category": "product_name",
"name": "Storage"
}
],
"category": "vendor",
"name": "Hitachi"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "Remote Desktop client for Desktop",
"product": {
"name": "Microsoft Windows Remote Desktop client for Desktop",
"product_id": "T023160",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows:remote_desktop_client_for_desktop"
}
}
}
],
"category": "product_name",
"name": "Windows"
},
{
"branches": [
{
"category": "product_name",
"name": "Microsoft Windows 10",
"product": {
"name": "Microsoft Windows 10",
"product_id": "T005617",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_10:-"
}
}
},
{
"category": "product_version",
"name": "Version 1607",
"product": {
"name": "Microsoft Windows 10 Version 1607",
"product_id": "T011520",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_10:version_1607"
}
}
},
{
"category": "product_version",
"name": "Version 1809",
"product": {
"name": "Microsoft Windows 10 Version 1809",
"product_id": "T019780",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_10:version_1809"
}
}
},
{
"category": "product_version",
"name": "Version 21H2",
"product": {
"name": "Microsoft Windows 10 Version 21H2",
"product_id": "T021306",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_10:version_21h2"
}
}
},
{
"category": "product_version",
"name": "Version 22H2",
"product": {
"name": "Microsoft Windows 10 Version 22H2",
"product_id": "T025256",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_10:version_22h2"
}
}
}
],
"category": "product_name",
"name": "Windows 10"
},
{
"branches": [
{
"category": "product_version",
"name": "Version 22H2",
"product": {
"name": "Microsoft Windows 11 Version 22H2",
"product_id": "T024880",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_11:version_22h2"
}
}
},
{
"category": "product_version_range",
"name": "version 21H2",
"product": {
"name": "Microsoft Windows 11 version 21H2",
"product_id": "T025777"
}
}
],
"category": "product_name",
"name": "Windows 11"
},
{
"branches": [
{
"category": "product_version",
"name": "SP1",
"product": {
"name": "Microsoft Windows Server 2008 R2 SP1",
"product_id": "T013769",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2008_r2:sp_1"
}
}
}
],
"category": "product_name",
"name": "Windows Server 2008 R2"
},
{
"branches": [
{
"category": "product_version",
"name": "SP2",
"product": {
"name": "Microsoft Windows Server 2008 SP2",
"product_id": "160428",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2008::sp2"
}
}
}
],
"category": "product_name",
"name": "Windows Server 2008 Service Pack 2"
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2012",
"product": {
"name": "Microsoft Windows Server 2012",
"product_id": "T005923",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2012:-"
}
}
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2012 R2",
"product": {
"name": "Microsoft Windows Server 2012 R2",
"product_id": "T014786",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2012_r2:-"
}
}
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2016",
"product": {
"name": "Microsoft Windows Server 2016",
"product_id": "T008880",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2016:-"
}
}
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2019",
"product": {
"name": "Microsoft Windows Server 2019",
"product_id": "T012979",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2019:-"
}
}
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2022",
"product": {
"name": "Microsoft Windows Server 2022",
"product_id": "T020315",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2022:-"
}
}
}
],
"category": "vendor",
"name": "Microsoft"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-32022",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32022"
},
{
"cve": "CVE-2023-32021",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32021"
},
{
"cve": "CVE-2023-32020",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32020"
},
{
"cve": "CVE-2023-32019",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32019"
},
{
"cve": "CVE-2023-32018",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32018"
},
{
"cve": "CVE-2023-32017",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32017"
},
{
"cve": "CVE-2023-32016",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32016"
},
{
"cve": "CVE-2023-32015",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32015"
},
{
"cve": "CVE-2023-32014",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32014"
},
{
"cve": "CVE-2023-32013",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32013"
},
{
"cve": "CVE-2023-32012",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32012"
},
{
"cve": "CVE-2023-32011",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32011"
},
{
"cve": "CVE-2023-32010",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32010"
},
{
"cve": "CVE-2023-32009",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32009"
},
{
"cve": "CVE-2023-32008",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-32008"
},
{
"cve": "CVE-2023-29373",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29373"
},
{
"cve": "CVE-2023-29372",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29372"
},
{
"cve": "CVE-2023-29371",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29371"
},
{
"cve": "CVE-2023-29370",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29370"
},
{
"cve": "CVE-2023-29369",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29369"
},
{
"cve": "CVE-2023-29368",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29368"
},
{
"cve": "CVE-2023-29367",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29367"
},
{
"cve": "CVE-2023-29366",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29366"
},
{
"cve": "CVE-2023-29365",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29365"
},
{
"cve": "CVE-2023-29364",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29364"
},
{
"cve": "CVE-2023-29363",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29363"
},
{
"cve": "CVE-2023-29362",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29362"
},
{
"cve": "CVE-2023-29361",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29361"
},
{
"cve": "CVE-2023-29360",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29360"
},
{
"cve": "CVE-2023-29359",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29359"
},
{
"cve": "CVE-2023-29358",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29358"
},
{
"cve": "CVE-2023-29355",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29355"
},
{
"cve": "CVE-2023-29352",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29352"
},
{
"cve": "CVE-2023-29351",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29351"
},
{
"cve": "CVE-2023-29346",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-29346"
},
{
"cve": "CVE-2023-24938",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-24938"
},
{
"cve": "CVE-2023-24937",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Rechte zu erweitern, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren und einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T012979",
"160428",
"T013769",
"T023160",
"T005923",
"T014786",
"T005617",
"T011520",
"T019780",
"T020487",
"T021306",
"T025777",
"T020315",
"T025256",
"T008880",
"T024880"
]
},
"release_date": "2023-06-13T22:00:00.000+00:00",
"title": "CVE-2023-24937"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…