Lucene search

K
cve[email protected]CVE-2023-28290
HistoryMay 09, 2023 - 6:15 p.m.

CVE-2023-28290

2023-05-0918:15:13
web.nvd.nist.gov
279
microsoft
remote desktop
windows
information disclosure
vulnerability
nvd

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.6%

Microsoft Remote Desktop app for Windows Information Disclosure Vulnerability

Affected configurations

Vulners
NVD
Node
microsoftremote_desktopRange10.1.0.010.2.3006.0
VendorProductVersionCPE
microsoftremote_desktop*cpe:2.3:a:microsoft:remote_desktop:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft Remote Desktop",
    "cpes": [
      "cpe:2.3:a:microsoft:remote_desktop:-:*:*:*:*:-:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "10.1.0.0",
        "lessThan": "10.2.3006.0",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.6%