๐Ÿ” CVE Alert

CVE-2023-21687

MEDIUM 5.5

HTTP.sys Information Disclosure Vulnerability

CVSS Score
5.5
EPSS Score
0.0%
EPSS Percentile
0th

HTTP.sys Information Disclosure Vulnerability

Vendor microsoft
Product windows server 2022
Ecosystems
Industries
TechnologyEnterprise
Published Feb 14, 2023
Last Updated Jan 1, 2025
Stay Ahead of the Next One

Get instant alerts for microsoft windows server 2022

Be the first to know when new medium vulnerabilities affecting microsoft windows server 2022 are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

Microsoft / Windows Server 2022
10.0.20348.0 < 10.0.20348.1547
Microsoft / Windows 11 version 21H2
10.0.0 < 10.0.22621.1574
Microsoft / Windows 11 version 22H2
10.0.22621.0 < 10.0.22621.1265

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
msrc.microsoft.com: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21687