Lucene search
MicrosoftCVELIST:CVE-2023-38148HistorySep 12, 2023 - 4:58 p.m.
CVE-2023-38148 Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
2023-09-1216:58:20
CWE-121
microsoft
www.cve.org
2
cve-2023-38148
ics
remote code execution
8.8 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
8.9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.0%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Windows Server 2022",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.1970:*:*:*:*:*:*:*",
"cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.1964:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.20348.1970",
"versionType": "custom",
"status": "affected"
},
{
"version": "10.0.0",
"lessThan": "10.0.20348.1964",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 11 version 21H2",
"cpes": [
"cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.2416:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.2416:*:*:*:*:*:arm64:*"
],
"platforms": [
"x64-based Systems",
"ARM64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.22000.2416",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 10 Version 21H2",
"cpes": [
"cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.3448:*:*:*:*:*:x86:*",
"cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.3448:*:*:*:*:*:arm64:*",
"cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.3448:*:*:*:*:*:x64:*"
],
"platforms": [
"32-bit Systems",
"ARM64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.19044.3448",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 11 version 22H2",
"cpes": [
"cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.2283:*:*:*:*:*:arm64:*",
"cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.2283:*:*:*:*:*:x64:*"
],
"platforms": [
"ARM64-based Systems",
"x64-based Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.22621.2283",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 10 Version 22H2",
"cpes": [
"cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.3448:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.3448:*:*:*:*:*:arm64:*",
"cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.3448:*:*:*:*:*:x86:*"
],
"platforms": [
"x64-based Systems",
"ARM64-based Systems",
"32-bit Systems"
],
"versions": [
{
"version": "10.0.0",
"lessThan": "10.0.19045.3448",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2023-38148
2023-09-12 17:15:18
prion
prion
Remote code execution
2023-09-12 17:15:00
mscve
mscve
Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
2023-09-12 07:00:00
cve
cve
CVE-2023-38148
2023-09-12 17:15:18
krebs
krebs
Adobe, Apple, Google & Microsoft Patch 0-Day Bugs
2023-09-12 22:36:01
nessus
nessus
KB5030211: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (September 2023)
2023-09-12 00:00:00
KB5030219: Windows 11 version 22H2 Security Update (September 2023)
2023-09-12 00:00:00
KB5030217: Windows 11 version 21H2 Security Update (September 2023)
2023-09-12 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5030211)
2023-09-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5030219)
2023-09-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5030217)
2023-09-13 00:00:00
mskb
mskb
September 12, 2023âKB5030211 (OS Builds 19044.3448 and 19045.3448)
2023-09-12 07:00:00
September 12, 2023âKB5030219 (OS Build 22621.2283)
2023-09-12 07:00:00
September 12, 2023âKB5030217 (OS Build 22000.2416)
2023-09-12 07:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, September 2023 Security Update Review
2023-09-12 19:20:31
kaspersky
kaspersky
KLA60566 Multiple vulnerabilities in Microsoft Windows
2023-09-12 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2023
2023-09-12 22:55:55
8.8 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
8.9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.0%
Related for CVELIST:CVE-2023-38148