Lucene search
MicrosoftVULNRICHMENT:CVE-2023-32050HistoryJul 11, 2023 - 5:02 p.m.
CVE-2023-32050 Windows Installer Elevation of Privilege Vulnerability
2023-07-1117:02:33
CWE-59
microsoft
github.com
6
windows installer
elevation of privilege
vulnerability
cve-2023-32050
CVSS3
7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
AI Score
6.8
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
CNA Affected
[
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22175:*:*:*:*:*:x64:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2008 Service Pack 2",
"versions": [
{
"status": "affected",
"version": "6.0.0",
"lessThan": "6.0.6003.22175",
"versionType": "custom"
}
],
"platforms": [
"32-bit Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22175:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22175:*:*:*:*:*:x86:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
"versions": [
{
"status": "affected",
"version": "6.0.0",
"lessThan": "6.0.6003.22175",
"versionType": "custom"
}
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.22175:*:*:*:*:*:x86:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2008 Service Pack 2",
"versions": [
{
"status": "affected",
"version": "6.0.0",
"lessThan": "6.0.6003.22175",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.26623:*:*:*:*:*:x64:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2008 R2 Service Pack 1",
"versions": [
{
"status": "affected",
"version": "6.1.0",
"lessThan": "6.1.7601.26623",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.26623:*:*:*:*:*:x64:*"
],
"vendor": "Microsoft",
"product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
"versions": [
{
"status": "affected",
"version": "6.0.0",
"lessThan": "6.1.7601.26623",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
}
]Related
cvelist
cvelist
CVE-2023-32050 Windows Installer Elevation of Privilege Vulnerability
2023-07-11 17:02:33
mscve
mscve
Windows Installer Elevation of Privilege Vulnerability
2023-07-11 07:00:00
cve
cve
CVE-2023-32050
2023-07-11 18:15:13
prion
prion
Privilege escalation
2023-07-11 18:15:00
nvd
nvd
CVE-2023-32050
2023-07-11 18:15:13
zdi
zdi
nessus
nessus
KB5028226: Windows Server 2008 Security Update (July 2023)
2023-07-11 00:00:00
KB5028224: Windows Server 2008 R2 Security Update (July 2023)
2023-07-11 00:00:00
mskb
mskb
July 11, 2023âKB5028226 (Security-only update)
2023-07-11 07:00:00
July 11, 2023âKB5028222 (Monthly Rollup)
2023-07-11 07:00:00
July 11, 2023âKB5028240 (Monthly Rollup)
2023-07-11 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5028240)
2023-07-12 00:00:00
kaspersky
kaspersky
KLA50775 Multiple vulnerabilities in Microsoft Products (ESU)
2023-07-11 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - July 2023
2023-07-11 21:50:34
CVSS3
7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
AI Score
6.8
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2023-32050