CVE-2023-21759

EUVD-2023-25926
Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.3 LOW
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
microsoftCNA
3.3 LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_server_2022
-
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
20H2 (arm64, x86)
KB5022282
21H2 (arm64, x64, x86)
KB5022282
22H2 (arm64, x64, x86)
KB5022282
Windows 11
21H2 (arm64, x64)
KB5022287
22H2 (arm64, x64)
KB5022303
Windows Server 2022
Server Core
KB5022291
Standard
KB5022291
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21759
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21759