Lucene search
HistoryJan 10, 2023 - 10:15 p.m.
CVE-2023-21674
windows
alpc
elevation of privilege
vulnerability
cve-2023-21674
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
8.7
Confidence
High
EPSS
0.001
Percentile
50.0%
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
Affected configurations
Node
microsoftwindows_10_1507Range<10.0.10240.19685
ORmicrosoftwindows_10_1607Range<10.0.14393.5648
ORmicrosoftwindows_10_1809Range<10.0.17763.3887
ORmicrosoftwindows_10_20h2Range<10.0.19042.2486
ORmicrosoftwindows_10_21h2Range<10.0.19044.2486
ORmicrosoftwindows_10_22h2Range<10.0.19045.2486
ORmicrosoftwindows_11_21h2Range<10.0.22000.1455
ORmicrosoftwindows_11_22h2Range<10.0.22621.1105
ORmicrosoftwindows_rt_8.1Match-
ORmicrosoftwindows_server_2012Matchr2
ORmicrosoftwindows_server_2016Range<10.0.14393.5648
ORmicrosoftwindows_server_2019Range<10.0.17763.3887
ORmicrosoftwindows_server_2022Range<10.0.20348.1487
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_10_1507 | * | cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_21h2 | * | cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_22h2 | * | cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_21h2 | * | cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_22h2 | * | cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_rt_8.1 | - | cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:* |
| microsoft | windows_server_2012 | r2 | cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* |
Related
mscve
mscve
vulnrichment
vulnrichment
cvelist
cvelist
cisa_kev
cisa_kev
attackerkb
attackerkb
CVE-2023-21674
2023-01-10 00:00:00
prion
prion
Privilege escalation
2023-01-10 22:15:00
githubexploit
githubexploit
Exploit for Use After Free in Microsoft
2024-03-07 05:43:48
cve
cve
CVE-2023-21674
2023-01-10 22:15:16
malwarebytes
malwarebytes
trellix
trellix
The Bug Report January 2023 Edition
2023-02-01 00:00:00
The Bug Report January 2023 Edition
2023-02-01 00:00:00
krebs
krebs
Microsoft Patch Tuesday, January 2023 Edition
2023-01-10 22:28:55
securelist
securelist
IT threat evolution in Q1 2023. Non-mobile statistics
2023-06-07 08:00:18
qualysblog
qualysblog
The JanuaryΒ 2023 Patch Tuesday Security Update Review
2023-01-10 21:09:08
thn
thn
avleonov
avleonov
kaspersky
kaspersky
KLA20158 Multiple vulnerabilities in Microsoft Products (ESU)
2023-01-10 00:00:00
KLA20154 Multiple vulnerabilities in Microsoft Windows
2023-01-10 00:00:00
mskb
mskb
January 10, 2023βKB5022352 (Monthly Rollup)
2023-04-11 07:00:00
January 10, 2023βKB5022346 (Security-only update)
2023-04-11 07:00:00
January 10, 2023βKB5022289 (OS Build 14393.5648)
2023-04-11 07:00:00
nessus
nessus
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5022352)
2023-01-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5022297)
2023-01-11 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5022289)
2023-01-11 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - January 2023
2023-01-10 22:32:55
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
8.7
Confidence
High
EPSS
0.001
Percentile
50.0%
Related for NVD:CVE-2023-21674