Lucene search
MicrosoftCVELIST:CVE-2023-21687HistoryFeb 14, 2023 - 7:33 p.m.
CVE-2023-21687 HTTP.sys Information Disclosure Vulnerability
2023-02-1419:33:27
CWE-125
microsoft
www.cve.org
3
information disclosure
http.sys
vulnerability
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
7.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.4%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Windows Server 2022",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.1547:*:*:*:*:*:*:*",
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.1540:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.20348.1547",
"versionType": "custom",
"status": "affected"
},
{
"version": "10.0.0",
"lessThan": "10.0.20348.1540",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 11 version 21H2",
"cpes": [
"cpe:2.3:o:microsoft:windows_11_21H2:10.0.22621.1574:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_11_21H2:10.0.22621.1574:*:*:*:*:*:arm64:*"
],
"platforms": [
"x64-based Systems",
"ARM64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.22621.1574",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 11 version 22H2",
"cpes": [
"cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.1265:*:*:*:*:*:arm64:*",
"cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.1265:*:*:*:*:*:x64:*"
],
"platforms": [
"ARM64-based Systems",
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.22621.1265",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2023-21687 HTTP.sys Information Disclosure Vulnerability
2023-02-14 19:33:27
mscve
mscve
HTTP.sys Information Disclosure Vulnerability
2023-02-14 08:00:00
nvd
nvd
CVE-2023-21687
2023-02-14 20:15:12
prion
prion
Information disclosure
2023-02-14 20:15:00
cve
cve
CVE-2023-21687
2023-02-14 20:15:12
mskb
mskb
February 14, 2023âKB5022845 (OS Build 22621.1265)
2023-02-14 08:00:00
February 14, 2023âKB5022842 (OS Build 20348.1547)
2023-02-14 08:00:00
February 14, 2023â KB5022921 (OS Build 20348.1544)
2023-02-14 08:00:00
nessus
nessus
KB5022845: Windows 11 Security Update (February 2023)
2023-02-14 00:00:00
KB5022842: Windows Server 2022 Security Update (February 2023)
2023-02-14 00:00:00
KB5022836: Windows 11 Security Update (February 2023)
2023-02-14 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5022845)
2023-08-08 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5022836)
2023-08-08 00:00:00
kaspersky
kaspersky
KLA20233 Multiple vulnerabilities in Microsoft Windows
2023-02-14 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - February 2023
2023-02-15 00:41:59
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
7.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.4%
Related for CVELIST:CVE-2023-21687