CVE-2023-21712
Published Apr 27, 2023
Last updated 6 months ago
Overview
- Description
- Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
- Source
- secure@microsoft.com
- NVD status
- Modified
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 8.1
- Impact score
- 5.9
- Exploitability score
- 2.2
- Vector string
- CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E583CAB1-6CA3-439D-9232-25D4AD4425BC",
"versionEndExcluding": "10.0.10240.19562"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C4E7A8EB-F231-4358-B2F0-86CE298DCB32",
"versionEndExcluding": "10.0.14393.5501"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FD13C1A3-0D55-44B4-BCDA-3FE16F3FD0BB",
"versionEndExcluding": "10.0.17763.3650"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "53D74F18-E886-4BDD-BF98-6E3E7FDB416A",
"versionEndExcluding": "10.0.19042.2251"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6CD19777-D4BC-4091-B5DF-196E3A5ECD41",
"versionEndExcluding": "10.0.19043.2251"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A22FD3BC-3283-49FD-89E7-120BD1BD5664",
"versionEndExcluding": "10.0.19044.2251"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "127FA76C-101B-4DAB-9034-1B893016D06A",
"versionEndExcluding": "10.0.19045.2486"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "701F768A-FE97-481C-87FE-53135E160DD8",
"versionEndExcluding": "10.0.22000.1219"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6F3B7829-75E9-4734-9C07-EBDDDE67EE7A",
"versionEndExcluding": "10.0.22000.819"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E93068DB-549B-45AB-8E5C-00EB5D8B5CF8"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C6CE5198-C498-4672-AF4C-77AB4BE06C5C"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C"
}
],
"operator": "OR"
}
]
}
]