Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-35628
HistoryDec 12, 2023 - 6:15 p.m.

CVE-2023-35628

2023-12-1218:15:17
CWE-416
[email protected]
web.nvd.nist.gov
2
cve-2023-35628
windows
mshtml
platform
remote code execution
vulnerability

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

0.035 Low

EPSS

Percentile

91.6%

JSON

Windows MSHTML Platform Remote Code Execution Vulnerability

Affected configurations

NVD
Node
microsoftwindows_10_1507Range<10.0.10240.20345
OR
microsoftwindows_10_1607Range<10.0.14393.6529
OR
microsoftwindows_10_1809Range<10.0.17763.5206
OR
microsoftwindows_10_21h2Range<10.0.19041.3803
OR
microsoftwindows_10_22h2Range<10.0.19045.3803
OR
microsoftwindows_11_21h2Range<10.0.22000.2652
OR
microsoftwindows_11_22h2Range<10.0.22621.2861
OR
microsoftwindows_11_23h2Range<10.0.22631.2861
OR
microsoftwindows_server_2008Matchr2sp1x64
OR
microsoftwindows_server_2012Match-
OR
microsoftwindows_server_2012Matchr2
OR
microsoftwindows_server_2016Match-
OR
microsoftwindows_server_2019Match-
OR
microsoftwindows_server_2022Match-
OR
microsoftwindows_server_2022_23h2Range<10.0.25398.584

Related

cve 1
openvas 7
prion 1
mskb 14
mscve 1
cvelist 1
malwarebytes 1
krebs 1
talosblog 1
thn 1
qualysblog 1
nessus 11
kaspersky 2
rapid7blog 1
cve
cve
CVE-2023-35628
2023-12-12 18:15:17
openvas
openvas
Microsoft Internet Explorer Memory Corruption Vulnerability (KB5033376)
2023-12-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5033372)
2023-12-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5033379)
2023-12-13 00:00:00
prion
prion
Remote code execution
2023-12-12 18:15:00
mskb
mskb
KB5033376: Cumulative security update for Internet Explorer: December 12, 2023
2023-12-12 08:00:00
December 12, 2023—KB5033372 (OS Builds 19044.3803 and 19045.3803)
2023-12-12 08:00:00
December 12, 2023—KB5033379 (OS Build 10240.20345)
2023-12-12 08:00:00
mscve
mscve
Windows MSHTML Platform Remote Code Execution Vulnerability
2023-12-12 08:00:00
cvelist
cvelist
CVE-2023-35628 Windows MSHTML Platform Remote Code Execution Vulnerability
2023-12-12 18:10:51
malwarebytes
malwarebytes
Microsoft patches 34 vulnerabilities, including one zero-day
2023-12-13 16:39:23
krebs
krebs
Microsoft Patch Tuesday, December 2023 Edition
2023-12-12 22:21:00
talosblog
talosblog
Microsoft releases lightest Patch Tuesday in three years, no zero-days disclosed
2023-12-12 19:45:23
thn
thn
Microsoft's Final 2023 Patch Tuesday: 34 Flaws Fixed, Including 4 Critical
2023-12-13 05:50:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, December 2023 Security Update Review
2023-12-12 20:01:33
nessus
nessus
KB5033424: Windows Server 2008 R2 Security Update (December 2023)
2023-12-12 00:00:00
KB5033372: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (December 2023)
2023-12-12 00:00:00
KB5033379: Windows 10 LTS 1507 Security Update (December 2023)
2023-12-12 00:00:00
kaspersky
kaspersky
KLA62389 Multiple vulnerabilities in Microsoft Products (ESU)
2023-12-12 00:00:00
KLA62388 Multiple vulnerabilities in Microsoft Windows
2023-12-12 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - December 2023
2023-12-12 21:06:54

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

0.035 Low

EPSS

Percentile

91.6%

JSON
Related for NVD:CVE-2023-35628
cve1openvas7prion1mskb14mscve1cvelist1malwarebytes1krebs1talosblog1thn1qualysblog1nessus11kaspersky2rapid7blog1