Lucene search
HistoryMay 09, 2023 - 6:15 p.m.
CVE-2023-29324
windows security bypass
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
8.1 High
AI Score
Confidence
High
0.186 Low
EPSS
Percentile
96.3%
Windows MSHTML Platform Security Feature Bypass Vulnerability
Affected configurations
Node
microsoftwindows_10_1507Range<10.0.10240.19926
ORmicrosoftwindows_10_1607Range<10.0.14393.5921
ORmicrosoftwindows_10_1809Range<10.0.17763.4377
ORmicrosoftwindows_10_20h2Range<10.0.19042.2965
ORmicrosoftwindows_10_21h2Range<10.0.19044.2965
ORmicrosoftwindows_10_22h2Range<10.0.19045.2965
ORmicrosoftwindows_11_21h2Range<10.0.22000.1936
ORmicrosoftwindows_11_22h2Range<10.0.22000.1702
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2sp1
ORmicrosoftwindows_server_2012Match-
ORmicrosoftwindows_server_2012Matchr2
ORmicrosoftwindows_server_2016Match-
ORmicrosoftwindows_server_2022Match-
Related
prion
prion
Security feature bypass
2023-05-09 18:15:00
cve
cve
CVE-2023-29324
2023-05-09 18:15:13
cvelist
cvelist
CVE-2023-29324 Windows MSHTML Platform Security Feature Bypass Vulnerability
2023-05-09 17:03:02
mskb
mskb
KB5026366: Cumulative security update for Internet Explorer: May 9, 2023
2023-05-09 07:00:00
May 9, 2023âKB5026408 (Monthly Rollup)
2023-05-09 07:00:00
May 9, 2023âKB5026427 (Security-only update)
2023-05-09 07:00:00
msrc
msrc
Microsoft Mitigates Outlook Elevation of Privilege Vulnerability
2023-03-14 13:00:00
Microsoft Mitigates Outlook Elevation of Privilege Vulnerability
2023-03-14 13:00:00
securelist
securelist
Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability
2023-07-19 12:00:41
IT threat evolution Q3 2023
2023-12-01 10:00:09
mscve
mscve
Windows MSHTML Platform Security Feature Bypass Vulnerability
2023-05-09 07:00:00
thn
thn
Beware: Experts Reveal New Details on Zero-Click Outlook RCE Exploits
2023-12-18 15:43:00
talosblog
talosblog
nessus
nessus
KB5026427: Windows Server 2008 Security Update (May 2023)
2023-05-09 00:00:00
KB5026426: Windows Server 2008 R2 Security Update (May 2023)
2023-05-09 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, May 2023 Security Update Review
2023-05-09 21:24:08
kaspersky
kaspersky
KLA49156 Multiple vulnerabilities in Microsoft Products (ESU)
2023-05-09 00:00:00
KLA49154 Multiple vulnerabilities in Microsoft Windows
2023-05-09 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5026382)
2023-05-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5026361)
2023-05-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5026368)
2023-07-19 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - May 2023
2023-05-09 20:02:02
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
8.1 High
AI Score
Confidence
High
0.186 Low
EPSS
Percentile
96.3%
Related for NVD:CVE-2023-29324