Lucene search

K
cvelistMicrosoftCVELIST:CVE-2015-2370
HistoryJul 14, 2015 - 10:00 p.m.

CVE-2015-2370

2015-07-1422:00:00
microsoft
www.cve.org
1

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.0%

The authentication implementation in the RPC subsystem in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not prevent DCE/RPC connection reflection, which allows local users to gain privileges via a crafted application, aka β€œWindows RPC Elevation of Privilege Vulnerability.”

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.0%