CVE-2023-34367

MEDIUM 6.5

CVSS Score

6.5

EPSS Score

0.0%

EPSS Percentile

0th

Windows 7 is vulnerable to a full blind TCP/IP hijacking attack. The vulnerability exists in Windows 7 (any Windows until Windows 8) and in any implementation of TCP/IP, which is vulnerable to the Idle scan attack (including many IoT devices). NOTE: The vendor considers this a low severity issue.

Vendor	n/a
Product	n/a
Published	Jun 14, 2023
Last Updated	Jan 6, 2025

Stay Ahead of the Next One

Get instant alerts for n/a n/a

Be the first to know when new medium vulnerabilities affecting n/a n/a are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

n/a / n/a

n/a

References

NVD ↗ CVE.org ↗ EPSS Data ↗

blog.pi3.com.pl: http://blog.pi3.com.pl/?p=850 portswigger.net: https://portswigger.net/daily-swig/blind-tcp-ip-hijacking-is-resurrected-for-windows-7 pwnies.com: https://pwnies.com/windows-7-blind-tcp-ip-hijacking/