VDB
CVE-2023-28229
CVE-2023-28229
PUBLISHED
KEV
In verschiedenen Versionen von Microsoft Windows und Microsoft Windows Server existieren mehrere nicht näher beschriebene Schwachstellen. Ein Angreifer kann dies ausnutzen, um Informationen offenzulegen, einen Denial of Service Zustand herbeizuführen, Sicherheitsmechanismen zu umgehen, seine Privilegien zu erweitern und um beliebigen Code auszuführen.
EPSS 8.64% · 92.6th percentile
Risk Scores
EPSS Score
8.64%
92.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Windows 10 Version 21H2 | |
| Microsoft | Microsoft Windows 11 Version 22H2 | |
| Microsoft | Microsoft Windows 10 Version 1607 | |
| Microsoft | Microsoft Windows 11 version 21H2 | |
| Microsoft | Microsoft Windows Server 2012 R2 | |
| Microsoft | Microsoft Windows Remote Desktop client for Desktop | |
| Microsoft | Microsoft Windows Server 2012 | |
| Microsoft | Microsoft Windows 10 | |
| Microsoft | Microsoft Windows Server 2008 R2 SP1 | |
| Microsoft | Microsoft Windows Server 2016 | |
| Microsoft | Microsoft Windows 10 Version 1809 | |
| Microsoft | Microsoft Windows 10 Version 20H2 | |
| Microsoft | Microsoft Windows Server 2022 | |
| Microsoft | Microsoft Windows Server 2019 | |
| Microsoft | Microsoft Windows 10 Version 22H2 | |
| Hitachi | Hitachi Storage Virtual Storage Platform | |
| Microsoft | Microsoft Windows Server 2008 SP2 |
Exploit Intelligence
- it's a CVE-2023-28229 (Patched), but feel free to use it for check any outdated software or reseach (github-poc-repo)
- it's a CVE-2023-28229 (Patched), but feel free to use it for check any outdated software or reseach (github-poc-repo)
- it's a CVE-2023-28229 (Patched), but feel free to use it for check any outdated software or reseach (github-poc-repo)
- it's a CVE-2023-28229 (Patched), but feel free to use it for check any outdated software or reseach (github-poc-repo)
- it's a CVE-2023-28229 (Patched), but feel free to use it for check any outdated software or reseach (github-poc-repo)
- it's a CVE-2023-28229 (Patched), but feel free to use it for check any outdated software or reseach (github-poc-repo)
- it's a CVE-2023-28229 (Patched), but feel free to use it for check any outdated software or reseach (github-poc-repo)
- it's a CVE-2023-28229 (Patched), but feel free to use it for check any outdated software or reseach (github-poc-repo)
- it's a CVE-2023-28229 (Patched), but feel free to use it for check any outdated software or reseach (github-poc-repo)
- it's a CVE-2023-28229 (Patched), but feel free to use it for check any outdated software or reseach (github-poc-repo)
…and 295 more exploits
Timeline
- Apr 11, 2023 CVE Published
- Apr 12, 2023 EPSS Score
- Apr 12, 2023 PoC Published
- May 20, 2023 EPSS Score
- Aug 3, 2023 EPSS Score
- Sep 5, 2023 PoC Published
- Sep 10, 2023 EPSS Score
- Oct 4, 2023 CISA KEV Added
- Nov 24, 2023 EPSS Score
- Jan 1, 2024 EPSS Score
- Feb 8, 2024 EPSS Score
- Mar 1, 2024 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0944.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0944 advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog exploit
- https://www.hitachi.com/products/it/storage-solutions/sec_info/2023/04.html advisory
- https://research.checkpoint.com/2023/queuejumper-critical-unauthorized-rce-vulnerability-in-msmq-service/ advisory
- https://msrc.microsoft.com/update-guide advisory