8.8 High
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
86.4%
12/12/2023
Critical
Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, overwrite arbitrary files, cause denial of service, spoof user interface.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2012 R2 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2023-35630
CVE-2023-35641
CVE-2023-35643
CVE-2023-36006
CVE-2023-36005
CVE-2023-20588
CVE-2023-35639
CVE-2023-35642
CVE-2023-36011
CVE-2023-35628
CVE-2023-35632
CVE-2023-36004
CVE-2023-35638
CVE-2023-36012
CVE-2023-35633
CVE-2023-35629
CVE-2023-21740
CVE-2023-35622
ACE
CVE-2023-205885.0Warning
CVE-2023-356305.0Warning
CVE-2023-356415.0Warning
CVE-2023-356435.0Warning
CVE-2023-360065.0Warning
CVE-2023-360055.0Warning
CVE-2023-356395.0Warning
CVE-2023-356425.0Warning
CVE-2023-360115.0Warning
CVE-2023-356285.0Warning
CVE-2023-360045.0Warning
CVE-2023-356385.0Warning
CVE-2023-360125.0Warning
CVE-2023-356335.0Warning
CVE-2023-356225.0Warning
CVE-2023-356295.0Warning
CVE-2023-217405.0Warning
CVE-2023-356325.0Warning
5033433
5033424
5033422
5033429
5033420
5033427
5033376
support.microsoft.com/kb/5033376
support.microsoft.com/kb/5033420
support.microsoft.com/kb/5033422
support.microsoft.com/kb/5033424
support.microsoft.com/kb/5033427
support.microsoft.com/kb/5033429
support.microsoft.com/kb/5033433
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20588
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21740
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35622
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35628
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35629
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35630
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35632
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35633
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35638
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35639
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35641
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35642
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35643
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36004
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36005
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36006
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36011
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36012
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-20588
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21740
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35622
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35628
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35629
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35630
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35632
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35633
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35638
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35639
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35641
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35642
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35643
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36004
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36005
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36006
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36011
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36012
portal.msrc.microsoft.com/en-us/security-guidance
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2008/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2012/
threats.kaspersky.com/en/product/Microsoft-Windows-Server/
threats.kaspersky.com/en/product/Microsoft-Windows/
8.8 High
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
86.4%