CVE-2023-36914

Published Aug 8, 2023

Last updated a year ago

CVSS medium 5.5

Overview

Description: Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability
Source: secure@microsoft.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 5.5
Impact score: 3.6
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Severity: MEDIUM

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:10.0.19044.3324:*:*:*:*:*:arm64:*",
            "vulnerable": true,
            "matchCriteriaId": "8AF9AA77-6F33-4A6C-A5F6-8B7BE490B73A"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:10.0.19044.3324:*:*:*:*:*:x64:*",
            "vulnerable": true,
            "matchCriteriaId": "56F799EC-EA23-4BB3-BF49-A667BDB35EEE"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:10.0.19044.3324:*:*:*:*:*:x86:*",
            "vulnerable": true,
            "matchCriteriaId": "7DDFE03A-D1FB-4D35-92A0-69C2DD84144F"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:10.0.19045.3324:*:*:*:*:*:arm64:*",
            "vulnerable": true,
            "matchCriteriaId": "13AECFF4-28D0-44D0-83E2-A1428BEE3ADF"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:10.0.19045.3324:*:*:*:*:*:x64:*",
            "vulnerable": true,
            "matchCriteriaId": "0BBDF48F-E652-43EF-8F5E-B0556D5C2F71"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:10.0.19045.3324:*:*:*:*:*:x86:*",
            "vulnerable": true,
            "matchCriteriaId": "1F6249A4-066F-4739-82DD-5CD16E5A823A"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:10.0.22000.2295:*:*:*:*:*:arm64:*",
            "vulnerable": true,
            "matchCriteriaId": "52FF1D77-92C6-4092-B6FF-01C0484B4690"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:10.0.22000.2295:*:*:*:*:*:x64:*",
            "vulnerable": true,
            "matchCriteriaId": "DC86BB80-6140-4EAB-A906-80DD70EA54D9"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2134:*:*:*:*:*:arm64:*",
            "vulnerable": true,
            "matchCriteriaId": "BD88672E-C1BA-4B3A-99D2-1838AA0B3C23"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2134:*:*:*:*:*:x64:*",
            "vulnerable": true,
            "matchCriteriaId": "C6B8C58E-0AEC-4B22-A3E1-36CB0641BCED"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References