Lucene search
MicrosoftMS:CVE-2023-28229HistoryApr 11, 2023 - 7:00 a.m.
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
2023-04-1107:00:00
Microsoft
msrc.microsoft.com
30
microsoft
windows
key isolation
privilege vulnerability
CVSS3
7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.014
Percentile
86.9%
Affected configurations
Node
microsoftwindows_server_2012Range<6.3.9600.20919r2
ORmicrosoftwindows_server_2012Range<6.3.9600.20919r2
ORmicrosoftwindows_server_2012Range<6.3.9600.20919r2
ORmicrosoftwindows_server_2012Range<6.3.9600.20919r2
ORmicrosoftwindows_server_2012Range<6.2.9200.24216
ORmicrosoftwindows_server_2012Range<6.2.9200.24216
ORmicrosoftwindows_server_2012Range<6.2.9200.24216
ORmicrosoftwindows_server_2012Range<6.2.9200.24216
ORmicrosoftwindows_server_2008Range<6.1.7601.26466r2
ORmicrosoftwindows_server_2008Range<6.1.7601.26466r2
ORmicrosoftwindows_server_2008Range<6.1.7601.26466r2
ORmicrosoftwindows_server_2008Range<6.1.7601.26466r2
ORmicrosoftwindows_server_2008Range<6.0.6003.22015sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.22015sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.22015sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.22015sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.22015sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.22015sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.22015sp2
ORmicrosoftwindows_server_2008Range<6.0.6003.22015sp2
ORmicrosoftwindows_server_2016Range<10.0.14393.5850
ORmicrosoftwindows_server_2016Range<10.0.14393.5850
ORmicrosoftwindows_10_1607Range<10.0.14393.5850
ORmicrosoftwindows_10_1607Range<10.0.14393.5850
ORmicrosoftwindows_10_1507Range<10.0.10240.19869
ORmicrosoftwindows_10_1507Range<10.0.10240.19869
ORmicrosoftwindows_10_22h2Range<10.0.19045.2846
ORmicrosoftwindows_10_22h2Range<10.0.19045.2846
ORmicrosoftwindows_10_22h2Range<10.0.19045.2846
ORmicrosoftwindows_11_22h2Range<10.0.22621.1555
ORmicrosoftwindows_11_22h2Range<10.0.22621.1555
ORmicrosoftwindows_10_21h2Range<10.0.19044.2846
ORmicrosoftwindows_10_21h2Range<10.0.19044.2846
ORmicrosoftwindows_10_21h2Range<10.0.19044.2846
ORmicrosoftwindows_11_21h2Range<10.0.22000.1817
ORmicrosoftwindows_11_21h2Range<10.0.22000.1817
ORmicrosoftwindows_10_20h2Range<10.0.19042.2846
ORmicrosoftwindows_10_20h2Range<10.0.19042.2846
ORmicrosoftwindows_server_2022Range<10.0.20348.1668
ORmicrosoftwindows_server_2022Range<10.0.20348.1668
ORmicrosoftwindows_server_2019Range<10.0.17763.4252
ORmicrosoftwindows_server_2019Range<10.0.17763.4252
ORmicrosoftwindows_10_1809Range<10.0.17763.4252
ORmicrosoftwindows_10_1809Range<10.0.17763.4252
ORmicrosoftwindows_10_1809Range<10.0.17763.4252
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_server_2012 | * | cpe:2.3:o:microsoft:windows_server_2012:*:r2:*:*:*:*:*:* |
| microsoft | windows_server_2012 | * | cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2008 | * | cpe:2.3:o:microsoft:windows_server_2008:*:r2:*:*:*:*:*:* |
| microsoft | windows_server_2008 | * | cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:* |
| microsoft | windows_server_2016 | * | cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1507 | * | cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:* |
| microsoft | windows_10_22h2 | * | cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_22h2 | * | cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_21h2 | * | cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:* |
Related
cisa_kev
cisa_kev
attackerkb
attackerkb
CVE-2023-28229
2023-04-11 00:00:00
vulnrichment
vulnrichment
githubexploit
githubexploit
Exploit for Sensitive Data Storage in Improperly Locked Memory in Microsoft
2023-09-04 07:48:13
Exploit for Sensitive Data Storage in Improperly Locked Memory in Microsoft
2024-03-27 20:57:46
prion
prion
Privilege escalation
2023-04-11 21:15:00
nvd
nvd
CVE-2023-28229
2023-04-11 21:15:23
cvelist
cvelist
cve
cve
CVE-2023-28229
2023-04-11 21:15:23
thn
thn
CISA Warns of Active Exploitation of JetBrains and Windows Vulnerabilities
2023-10-05 09:30:00
nessus
nessus
KB5025273: Windows Server 2008 Security Update (April 2023)
2023-04-11 00:00:00
KB5025277: Windows Server 2008 R2 Security Update (April 2023)
2023-04-11 00:00:00
KB5025234: Windows 10 LTS 1507 Security Update (April 2023)
2023-04-11 00:00:00
mskb
mskb
April 11, 2023âKB5025271 (Monthly Rollup)
2023-04-11 07:00:00
April 11, 2023âKB5025273 (Security-only update)
2023-04-11 07:00:00
April 11, 2023âKB5025277 (Security-only update)
2023-04-11 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5025279)
2023-04-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5025221)
2023-04-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5025234)
2023-04-12 00:00:00
kaspersky
kaspersky
KLA48842 Multiple vulnerabilities in Microsoft Products (ESU)
2023-04-11 00:00:00
KLA48845 Multiple vulnerabilities in Microsoft Windows
2023-04-11 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - April 2023
2023-04-11 22:49:56
CVSS3
7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.014
Percentile
86.9%
Related for MS:CVE-2023-28229