Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
References
Configurations
Configuration 1 (hide)
|
History
27 Apr 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
Summary | Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability | |
References |
|
|
17 Jan 2023, 17:35
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo CWE-362 |
|
CPE | cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_20h2:-:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_10_20h2:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_10_20h2:-:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:* |
|
First Time |
Microsoft windows Server 2008
Microsoft windows 8.1 Microsoft windows 10 1607 Microsoft windows Rt 8.1 Microsoft windows 10 21h2 Microsoft windows Server 2016 Microsoft windows 11 22h2 Microsoft windows Server 2012 Microsoft windows 10 1809 Microsoft Microsoft windows 11 21h2 Microsoft windows Server 2019 Microsoft windows 10 22h2 Microsoft windows 10 20h2 Microsoft windows Server 2022 |
|
References | (MISC) https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21535 - Patch, Vendor Advisory |
10 Jan 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-10 22:15
Updated : 2023-12-10 14:48
NVD link : CVE-2023-21535
Mitre link : CVE-2023-21535
CVE.ORG link : CVE-2023-21535
JSON object : View
Products Affected
microsoft
- windows_10_21h2
- windows_10_1809
- windows_10_1607
- windows_rt_8.1
- windows_server_2016
- windows_11_21h2
- windows_10_20h2
- windows_11_22h2
- windows_server_2019
- windows_server_2022
- windows_server_2008
- windows_server_2012
- windows_10_22h2
- windows_8.1
CWE
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
NVD-CWE-noinfo