Lucene search

MicrosoftMS:CVE-2024-20662

HistoryJan 09, 2024 - 8:00 a.m.

Windows Online Certificate Status Protocol (OCSP) Information Disclosure Vulnerability

2024-01-0908:00:00

Microsoft

msrc.microsoft.com

windows

ocsp

information disclosure

vulnerability

microsoft

CVSS3

4.9

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.001

Percentile

30.0%

JSON

Affected configurations

Vulners

Node

microsoftwindows_server_2012Range<6.3.9600.21765r2

microsoftwindows_server\,_1803_\(server_core_installation\)Range<6.2.9200.24664

microsoftwindows_server_2012Range<6.2.9200.24664

microsoftwindows_server_2008Range<6.1.7601.26910r2x64

microsoftwindows_server_2008Range<6.0.6003.22464x64

microsoftwindows_server\,_1803_\(server_core_installation\)Range<6.0.6003.22464

microsoftwindows_10_2004_for_32-bit_systemsRange<6.0.6003.22464

microsoftwindows_server\,_1803_\(server_core_installation\)Range<10.0.14393.6614

microsoftwindows_server_2016Range<10.0.14393.6614

microsoftwindows_server_2022_23h2Range<10.0.25398.643

microsoftwindows_server\,_1803_\(server_core_installation\)Range<10.0.20348.2227

microsoftwindows_server_2022Range<10.0.20348.2227

microsoftwindows_server\,_1803_\(server_core_installation\)Range<10.0.17763.5329

microsoftwindows_server_2019Range<10.0.17763.5329

CVSS3

4.9

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.001

Percentile

30.0%

JSON

Related for MS:CVE-2024-20662