VDB
CVE-2023-35309
CVE-2023-35309
PUBLISHED
CVSS 8.699999809265137 HIGH
In verschiedenen Versionen von Microsoft Windows und Microsoft Windows Server existieren mehrere Schwachstellen. Diese werden von Microsoft nicht im Detail beschrieben. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode auszuführen, Informationen offenzulegen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Denial of Service Zustand herbeizuführen.
EPSS 0.65% · 71.3th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.65%
71.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Windows Server 2008 R2 SP1 | |
| Microsoft | Microsoft Windows Server 2019 | |
| Amazon | Amazon Linux 2 | |
| Gentoo | Gentoo Linux | |
| Microsoft | Microsoft Windows Server 2012 R2 | |
| Hitachi | Hitachi Storage Virtual Storage Platform | |
| Microsoft | Microsoft Windows 10 Version 1809 | |
| Microsoft | Microsoft Windows Server 2012 | |
| Microsoft | Microsoft Windows 10 Version 1607 | |
| Xerox | Xerox FreeFlow Print Server v9 | |
| Microsoft | Microsoft Windows 10 | |
| Microsoft | Microsoft Windows Server 2016 | |
| Microsoft | Microsoft Windows 10 Version 21H2 | |
| Microsoft | Microsoft Windows Server 2022 | |
| Xerox | Xerox FreeFlow Print Server v2 | |
| Microsoft | Microsoft Windows 11 Version 22H2 | |
| Fedora | Fedora Linux | |
| Microsoft | Microsoft Windows Admin Center | |
| Microsoft | Microsoft Windows 10 Version 22H2 | |
| Xerox | Xerox FreeFlow Print Server v7 for Solaris |
…and 2 more
Exploit Intelligence
Timeline
- Jul 11, 2023 CVE Published
- Jul 12, 2023 EPSS Score
- Aug 16, 2023 EPSS Score
- Aug 16, 2023 CVE Updated
- Oct 24, 2023 EPSS Score
- Nov 27, 2023 EPSS Score
- Jan 1, 2024 EPSS Score
- Mar 10, 2024 EPSS Score
- Apr 14, 2024 EPSS Score
- May 17, 2024 EPSS Score
- Jun 22, 2024 EPSS Score
- Jul 17, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1718.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1718 advisory
- https://www.hitachi.com/products/it/storage-solutions/sec_info/2023/07.html advisory
- https://msrc.microsoft.com/update-guide/de-DE/vulnerability/ADV230003 advisory
- https://msrc.microsoft.com/update-guide advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2031.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2031 advisory
- https://security.business.xerox.com/wp-content/uploads/2023/08/cert_XRX23-011_FFPSv7-S11_MediaInstall_Aug2023.pdf advisory
- https://security.business.xerox.com/wp-content/uploads/2023/08/cert_XRX23-012_FFPSv2_Win10_SecurityBulletin_Aug2023.pdf advisory
- https://securitydocs.business.xerox.com/wp-content/uploads/2023/08/Xerox-Security-Bulletin-XRX23-013-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf advisory
- https://alas.aws.amazon.com/AL2/ALAS-2023-2331.html advisory
- https://security.gentoo.org/glsa/202408-17 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-d2d3a5fa79 advisory