CVE-2023-2827711.04.2023, 21:15Windows DNS Server Information Disclosure VulnerabilityEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTPrimary4.9 MEDIUMNETWORKLOWHIGHCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NBase ScoreCVSS 3.xEPSS ScorePercentile: UnknownAffected Products (NVD)VendorProductVersionmicrosoftwindows_server_2022-𝑥= Vulnerable software versionsWindows ReleasesPlatformVersionWindows Server 2022Server CoreKB5025230StandardKB5025230Common Weakness EnumerationCWE-190 - Integer Overflow or WraparoundThe software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.Referenceshttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28277https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28277