Lucene search
HistoryMay 09, 2023 - 6:15 p.m.
CVE-2023-28251
windows
driver
revocation
list
security
feature
bypass
vulnerability
cve-2023-28251
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
AI Score
7.3
Confidence
High
EPSS
0
Percentile
13.5%
Windows Driver Revocation List Security Feature Bypass Vulnerability
Affected configurations
Node
microsoftwindows_10_1507Range<10.0.10240.19926
ORmicrosoftwindows_10_1607Range<10.0.14393.5921
ORmicrosoftwindows_10_1809Range<10.0.17763.4377
ORmicrosoftwindows_10_20h2Range<10.0.19042.2965
ORmicrosoftwindows_10_21h2Range<10.0.19044.2965
ORmicrosoftwindows_10_22h2Range<10.0.19045.2965
ORmicrosoftwindows_11_21h2Range<10.0.22000.1936
ORmicrosoftwindows_11_22h2Range<10.0.22000.1702
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2sp1
ORmicrosoftwindows_server_2012Match-
ORmicrosoftwindows_server_2012Matchr2
ORmicrosoftwindows_server_2016Match-
ORmicrosoftwindows_server_2022Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_10_1507 | * | cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_21h2 | * | cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_22h2 | * | cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_21h2 | * | cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_22h2 | * | cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2008 | - | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:* |
| microsoft | windows_server_2008 | r2 | cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:* |
Related
prion
prion
Security feature bypass
2023-05-09 18:15:00
mscve
mscve
Windows Driver Revocation List Security Feature Bypass Vulnerability
2023-05-09 07:00:00
cvelist
cvelist
cve
cve
CVE-2023-28251
2023-05-09 18:15:13
mskb
mskb
May 9, 2023โKB5026427 (Security-only update)
2023-05-09 07:00:00
May 9, 2023โKB5026408 (Monthly Rollup)
2023-05-09 07:00:00
May 9, 2023โKB5026413 (Monthly Rollup)
2023-05-09 07:00:00
nessus
nessus
KB5026427: Windows Server 2008 Security Update (May 2023)
2023-05-09 00:00:00
KB5026426: Windows Server 2008 R2 Security Update (May 2023)
2023-05-09 00:00:00
KB5026411: Windows Server 2012 Security Update (May 2023)
2023-05-09 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5026382)
2023-05-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5026368)
2023-07-19 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5026361)
2023-05-10 00:00:00
kaspersky
kaspersky
KLA49156 Multiple vulnerabilities in Microsoft Products (ESU)
2023-05-09 00:00:00
KLA49154 Multiple vulnerabilities in Microsoft Windows
2023-05-09 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - May 2023
2023-05-09 20:02:02
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
AI Score
7.3
Confidence
High
EPSS
0
Percentile
13.5%
Related for NVD:CVE-2023-28251