Lucene search
MicrosoftCVELIST:CVE-2023-21722HistoryFeb 14, 2023 - 7:33 p.m.
CVE-2023-21722 .NET Framework Denial of Service Vulnerability
2023-02-1419:33:47
CWE-59
microsoft
www.cve.org
1
cve-2023-21722
.net framework
dos
vulnerability
5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
6.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
10.4%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 4.8",
"cpes": [
"cpe:2.3:a:microsoft:.net:4.8:*:*:*:*:*:*:*"
],
"platforms": [
"Windows Server 2008 R2 for x64-based Systems Service Pack 1",
"Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
"Windows Server 2012",
"Windows Server 2012 (Server Core installation)",
"Windows Server 2012 R2",
"Windows Server 2012 R2 (Server Core installation)"
],
"versions": [
{
"version": "4.8.0",
"lessThan": "4.8.4614.08",
"versionType": "custom",
"status": "affected"
},
{
"version": "4.8.0",
"lessThan": "4.8.4614.07",
"versionType": "custom",
"status": "affected"
},
{
"version": "4.8.0",
"lessThan": "4.8.04614.05",
"versionType": "custom",
"status": "affected"
},
{
"version": "4.8.0",
"lessThan": "4.8.04614.03",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 3.5 AND 4.8",
"cpes": [
"cpe:2.3:a:microsoft:.net:4.8:*:*:*:*:*:*:*"
],
"platforms": [
"Windows 10 Version 1809 for 32-bit Systems",
"Windows 10 Version 1809 for x64-based Systems",
"Windows Server 2019",
"Windows Server 2019 (Server Core installation)",
"Windows Server 2022",
"Windows Server 2022 (Server Core installation)",
"Windows 10 Version 20H2 for 32-bit Systems",
"Windows 10 Version 20H2 for ARM64-based Systems",
"Windows 11 version 21H2 for x64-based Systems",
"Windows 11 version 21H2 for ARM64-based Systems",
"Windows 10 Version 21H2 for 32-bit Systems",
"Windows 10 Version 21H2 for ARM64-based Systems",
"Windows 10 Version 21H2 for x64-based Systems",
"Windows 10 Version 22H2 for x64-based Systems",
"Windows 10 Version 1607 for 32-bit Systems",
"Windows Server 2016 (Server Core installation)",
"Windows 10 Version 22H2 for 32-bit Systems",
"Windows 10 Version 22H2 for ARM64-based Systems",
"Windows 10 Version 1607 for x64-based Systems",
"Windows Server 2016"
],
"versions": [
{
"version": "4.8.0",
"lessThan": "10.0.04614.06",
"versionType": "custom",
"status": "affected"
},
{
"version": "4.8.0",
"lessThan": "10.0.4614.06",
"versionType": "custom",
"status": "affected"
},
{
"version": "4.8.0",
"lessThan": "10.0.04614.05",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 3.5 AND 4.7.2",
"cpes": [
"cpe:2.3:a:microsoft:.net:4.7.2:*:*:*:*:*:*:*"
],
"platforms": [
"Windows 10 Version 1809 for 32-bit Systems",
"Windows 10 Version 1809 for x64-based Systems",
"Windows 10 Version 1809 for ARM64-based Systems",
"Windows Server 2019",
"Windows Server 2019 (Server Core installation)",
"Windows Server 2016",
"Windows 10 Version 1607 for x64-based Systems",
"Windows Server 2016 (Server Core installation)",
"Windows 10 Version 1607 for 32-bit Systems"
],
"versions": [
{
"version": "4.7.0",
"lessThan": "10.0.04038.03",
"versionType": "custom",
"status": "affected"
},
{
"version": "4.7.0",
"lessThan": "10.0.14393.5717",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
"cpes": [
"cpe:2.3:a:microsoft:.net:4.7.2:*:*:*:*:*:*:*"
],
"platforms": [
"Windows Server 2008 R2 for x64-based Systems Service Pack 1",
"Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
"Windows Server 2012",
"Windows Server 2012 (Server Core installation)",
"Windows Server 2012 R2",
"Windows Server 2012 R2 (Server Core installation)"
],
"versions": [
{
"version": "4.7.0",
"lessThan": "4.7.04614.08",
"versionType": "custom",
"status": "affected"
},
{
"version": "4.7.0",
"lessThan": "4.7.04038.05",
"versionType": "custom",
"status": "affected"
},
{
"version": "4.7.0",
"lessThan": "4.7.04038.03",
"versionType": "custom",
"status": "affected"
},
{
"version": "4.7.0",
"lessThan": "4.7.04038.02",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 3.5 AND 4.8.1",
"cpes": [
"cpe:2.3:a:microsoft:.net:4.8.1:*:*:*:*:*:*:*"
],
"platforms": [
"Windows Server 2022",
"Windows Server 2022 (Server Core installation)",
"Windows 10 Version 20H2 for 32-bit Systems",
"Windows 10 Version 20H2 for ARM64-based Systems",
"Windows 11 version 21H2 for x64-based Systems",
"Windows 11 version 21H2 for ARM64-based Systems",
"Windows 10 Version 21H2 for 32-bit Systems",
"Windows 10 Version 21H2 for ARM64-based Systems",
"Windows 10 Version 21H2 for x64-based Systems",
"Windows 11 Version 22H2 for ARM64-based Systems",
"Windows 11 Version 22H2 for x64-based Systems",
"Windows 10 Version 22H2 for ARM64-based Systems",
"Windows 10 Version 22H2 for 32-bit Systems",
"Windows 10 Version 22H2 for x64-based Systems"
],
"versions": [
{
"version": "4.8.1",
"lessThan": "10.0.09139.02",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 4.6.2",
"cpes": [
"cpe:2.3:a:microsoft:.net:4.6.2:*:*:*:*:*:*:*"
],
"platforms": [
"Windows Server 2008 for 32-bit Systems Service Pack 2",
"Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)",
"Windows Server 2008 for x64-based Systems Service Pack 2",
"Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)"
],
"versions": [
{
"version": "4.7.0",
"lessThan": "4.7.04038.06",
"versionType": "custom",
"status": "affected"
},
{
"version": "4.7.0",
"lessThan": "4.7.4038.05",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 3.5 and 4.6.2",
"cpes": [
"cpe:2.3:a:microsoft:.net:4.6.2:*:*:*:*:*:*:*"
],
"platforms": [
"Windows 10 for 32-bit Systems",
"Windows 10 for x64-based Systems"
],
"versions": [
{
"version": "4.7.0",
"lessThan": "10.0.10240.19747",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 2.0 Service Pack 2",
"cpes": [
"cpe:2.3:a:microsoft:.net:2.0:sp2:*:*:*:*:*:*"
],
"platforms": [
"Windows Server 2008 for 32-bit Systems Service Pack 2",
"Windows Server 2008 for x64-based Systems Service Pack 2"
],
"versions": [
{
"version": "2.0.0",
"lessThan": "2.0.50727.8966",
"versionType": "custom",
"status": "affected"
},
{
"version": "2.0.0",
"lessThan": "2.0.04038.05",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 3.0 Service Pack 2",
"cpes": [
"cpe:2.3:a:microsoft:.net:3.0:sp2:*:*:*:*:*:*"
],
"platforms": [
"Windows Server 2008 for 32-bit Systems Service Pack 2",
"Windows Server 2008 for x64-based Systems Service Pack 2"
],
"versions": [
{
"version": "3.0.0",
"lessThan": "2.0.50727.8966",
"versionType": "custom",
"status": "affected"
},
{
"version": "3.0.0",
"lessThan": "2.0.04038.05",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 3.5",
"cpes": [
"cpe:2.3:a:microsoft:.net:3.5:*:*:*:*:*:*:*"
],
"platforms": [
"Windows Server 2012",
"Windows Server 2012 (Server Core installation)",
"Windows Server 2012 R2",
"Windows Server 2012 R2 (Server Core installation)"
],
"versions": [
{
"version": "3.5.0",
"lessThan": "3.5.50727.8966",
"versionType": "custom",
"status": "affected"
},
{
"version": "3.5.0",
"lessThan": "2.0.50727.8966",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft .NET Framework 3.5.1",
"cpes": [
"cpe:2.3:a:microsoft:.net:3.5.1:*:*:*:*:*:*:*"
],
"platforms": [
"Windows Server 2008 R2 for x64-based Systems Service Pack 1",
"Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
],
"versions": [
{
"version": "3.5.0",
"lessThan": "3.5.50727.8966",
"versionType": "custom",
"status": "affected"
},
{
"version": "3.5.0",
"lessThan": "2.0.50727.8966",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
cve
cve
CVE-2023-21722
2023-02-14 20:15:14
mscve
mscve
.NET Framework Denial of Service Vulnerability
2023-02-14 08:00:00
nvd
nvd
CVE-2023-21722
2023-02-14 20:15:14
ubuntucve
ubuntucve
CVE-2023-21722
2023-02-14 00:00:00
prion
prion
Denial of service
2023-02-14 20:15:00
mskb
mskb
February 14, 2023-KB5022729 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2
2023-02-14 08:00:00
openvas
openvas
Microsoft .NET Framework DoS And RCE Vulnerabilities (KB5022729)
2023-02-15 00:00:00
Microsoft .NET Framework DoS And RCE Vulnerabilities (KB5022727)
2023-02-15 00:00:00
Microsoft .NET Framework DoS And RCE Vulnerabilities (KB5022728)
2023-02-15 00:00:00
nessus
nessus
Security Updates for Microsoft .NET Framework (February 2023)
2023-02-17 00:00:00
KB5022838: Windows 10 Version 1607 and Windows Server 2016 Security Update (February 2023)
2023-02-14 00:00:00
KB5022858: Windows 10 LTS 1507 Security Update (February 2023)
2023-02-14 00:00:00
kaspersky
kaspersky
KLA20235 Multiple vulnerabilities in Microsoft Developer Tools
2023-02-14 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - February 2023
2023-02-15 00:41:59
5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
6.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
10.4%
Related for CVELIST:CVE-2023-21722