Lucene search
HistorySep 12, 2023 - 5:15 p.m.
CVE-2023-38152
dhcp
server
info disclosure
vulnerability
cve-2023-38152
nvd
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.4%
DHCP Server Service Information Disclosure Vulnerability
Affected configurations
Node
microsoftwindows_server_2019Range10.0.0â10.0.17763.4851
ORmicrosoftwindows_server_2019Range10.0.0â10.0.17763.4851
ORmicrosoftwindows_server_2022Range10.0.0â10.0.20348.1970
ORmicrosoftwindows_server_2022Range10.0.0â10.0.20348.1964
ORmicrosoftwindows_server_2016Range10.0.0â10.0.14393.6252
ORmicrosoftwindows_server_2016Range10.0.0â10.0.14393.6252
ORmicrosoftwindows_server_2008_sp2Range6.0.0â6.0.6003.22264sp2
ORmicrosoftwindows_server_2008_sp2Range6.0.0â6.0.6003.22264sp2
ORmicrosoftwindows_server_2008_sp2Range6.0.0â6.0.6003.22262sp2
ORmicrosoftwindows_server_2008_sp2Range6.0.0â6.0.6003.22264sp2
ORmicrosoftwindows_server_2008_sp2Range6.0.0â6.0.6003.22262sp2
ORmicrosoftwindows_server_2008_r2_sp1Range6.1.0â6.1.7601.26713sp1
ORmicrosoftwindows_server_2008_r2_sp1Range6.0.0â6.1.7601.26713sp1
ORmicrosoftwindows_server_2012Range6.2.0â6.2.9200.24462
ORmicrosoftwindows_server_2012Range6.2.0â6.2.9200.24462
ORmicrosoftwindows_server_2012_r2Range6.3.0â6.3.9600.21563
ORmicrosoftwindows_server_2012_r2Range6.3.0â6.3.9600.21563
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_server_2019 | * | cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2019 | * | cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2022 | * | cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2022 | * | cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2016 | * | cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2016 | * | cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2008_sp2 | * | cpe:2.3:o:microsoft:windows_server_2008_sp2:*:sp2:*:*:*:*:*:* |
| microsoft | windows_server_2008_sp2 | * | cpe:2.3:o:microsoft:windows_server_2008_sp2:*:sp2:*:*:*:*:*:* |
| microsoft | windows_server_2008_sp2 | * | cpe:2.3:o:microsoft:windows_server_2008_sp2:*:sp2:*:*:*:*:*:* |
| microsoft | windows_server_2008_sp2 | * | cpe:2.3:o:microsoft:windows_server_2008_sp2:*:sp2:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Windows Server 2019",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.4851:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.17763.4851",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2019 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.4851:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.17763.4851",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2022",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.1970:*:*:*:*:*:*:*",
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.1964:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.20348.1970",
"versionType": "custom",
"status": "affected"
},
{
"version": "10.0.0",
"lessThan": "10.0.20348.1964",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2016",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6252:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.14393.6252",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2016 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.6252:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.14393.6252",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2008 Service Pack 2",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22264:*:*:*:*:*:x64:*"
],
"platforms": [
"32-bit Systems"
],
"versions": [
{
"version": "6.0.0",
"lessThan": "6.0.6003.22264",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22264:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22264:*:*:*:*:*:x86:*",
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22262:*:*:*:*:*:x86:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "6.0.0",
"lessThan": "6.0.6003.22264",
"versionType": "custom",
"status": "affected"
},
{
"version": "6.0.0",
"lessThan": "6.0.6003.22262",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2008 Service Pack 2",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22264:*:*:*:*:*:x86:*",
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22262:*:*:*:*:*:x86:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.0.0",
"lessThan": "6.0.6003.22264",
"versionType": "custom",
"status": "affected"
},
{
"version": "6.0.0",
"lessThan": "6.0.6003.22262",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2008 R2 Service Pack 1",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.26713:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.1.0",
"lessThan": "6.1.7601.26713",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.26713:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.0.0",
"lessThan": "6.1.7601.26713",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2012",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24462:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.2.0",
"lessThan": "6.2.9200.24462",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2012 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24462:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.2.0",
"lessThan": "6.2.9200.24462",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2012 R2",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.21563:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.3.0",
"lessThan": "6.3.9600.21563",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2012 R2 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.21563:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.3.0",
"lessThan": "6.3.9600.21563",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
mscve
mscve
DHCP Server Service Information Disclosure Vulnerability
2023-09-12 07:00:00
vulnrichment
vulnrichment
CVE-2023-38152 DHCP Server Service Information Disclosure Vulnerability
2023-09-12 16:58:19
nvd
nvd
CVE-2023-38152
2023-09-12 17:15:18
prion
prion
Information disclosure
2023-09-12 17:15:00
cvelist
cvelist
CVE-2023-38152 DHCP Server Service Information Disclosure Vulnerability
2023-09-12 16:58:19
nessus
nessus
KB5030261: Windows Server 2008 R2 Security Update (September 2023)
2023-09-12 00:00:00
KB5030286: Windows Server 2008 Security Update (September 2023)
2023-09-12 00:00:00
KB5030279: Windows Server 2012 Security Update (September 2023)
2023-09-12 00:00:00
mskb
mskb
September 12, 2023âKB5030271 (Monthly Rollup)
2023-09-12 07:00:00
September 12, 2023âKB5030286 (Security-only update)
2023-09-12 07:00:00
September 12, 2023âKB5030279 (Security-only update)
2023-09-12 07:00:00
kaspersky
kaspersky
KLA60563 Multiple vulnerabilities in Microsoft Products (ESU)
2023-09-12 00:00:00
KLA60566 Multiple vulnerabilities in Microsoft Windows
2023-09-12 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5030213)
2023-09-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5030214)
2023-09-13 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, September 2023 Security Update Review
2023-09-12 19:20:31
rapid7blog
rapid7blog
Patch Tuesday - September 2023
2023-09-12 22:55:55
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.4%
Related for CVE-2023-38152