CVE-2023-28247

EUVD-2023-31955
Windows Network File System Information Disclosure Vulnerability
Wrap or Wraparound
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
microsoftCNA
7.5 HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 87%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_server_2012
-
microsoftwindows_server_2016
-
microsoftwindows_server_2019
-
microsoftwindows_server_2022
-
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows Server 2012
Server Core
KB5025287
Standard
KB5025287
Windows Server 2012 R2
Server Core
KB5025288
Standard
KB5025288
Windows Server 2016
Server Core
KB5025228
Standard
KB5025228
Windows Server 2019
Server Core
KB5025229
Standard
KB5025229
Windows Server 2022
Server Core
KB5025230
Standard
KB5025230
Common Weakness Enumeration
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28247
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28247