BDU:2023-02464
Scores
EPSS
Percentile: 0.0%
CVSS
CVSS Score: 7.8/10
All CVSS Scores
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vector Breakdown
CVSS (Common Vulnerability Scoring System) vector provides detailed metrics about vulnerability characteristics
CVSS
Attack Vector
Local (L)
Describes how the vulnerability is exploited
Attack Complexity
Low (L)
Describes the conditions beyond the attacker's control
Privileges Required
Low (L)
Describes the level of privileges an attacker must possess
User Interaction
None (N)
Captures the requirement for a human user participation
Scope
Unchanged (U)
Determines if a successful attack impacts components beyond the vulnerable component
Confidentiality Impact
High (H)
Measures the impact to the confidentiality of information
Integrity Impact
High (H)
Measures the impact to integrity of a successfully exploited vulnerability
Availability Impact
High (H)
Measures the impact to the availability of the impacted component
Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C
Vector Breakdown
CVSS (Common Vulnerability Scoring System) vector provides detailed metrics about vulnerability characteristics
CVSS
Attack Vector
Local (L)
Describes how the vulnerability is exploited
Attack Complexity
Low (L)
Describes the conditions beyond the attacker's control
Authentication
Single
Describes the level of privileges an attacker must possess
Confidentiality Impact
Complete
Measures the impact to the confidentiality of information
Integrity Impact
Complete
Measures the impact to integrity of a successfully exploited vulnerability
Availability Impact
Complete
Measures the impact to the availability of the impacted component
Description
Уязвимость компонента Win32k (Win32k.sys) операционных систем Windows связана с ошибками обработки объектов в памяти. Эксплуатация уязвимости может позволить нарушителю повысить свои привилегии
Scaner-VS 7 — a modern vulnerability management solution
Sources
Related Vulnerabilities
Recommendations
Source: bdu
Установка обновлений из доверенных источников.
В связи со сложившейся обстановкой и введенными санкциями против Российской Федерации рекомендуется устанавливать обновления программного обеспечения только после оценки всех сопутствующих рисков.
Компенсирующие меры:
- минимизация пользовательских привилегий;
- отключение/удаление не используемых учётных записей пользователей.
Использование рекомендаций производителя:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29336
Vulnerable Software (92)
Type: Configuration
Vendor: microsoft corp
Product: windows_10
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_10 1607
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2008
Operating System: * *
{ "version_exact": "service pack 2 (server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2008
Operating System: * *
{ "version_exact": "r2 service pack 1 (server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2008
Operating System: * *
{ "version_exact": "r2 service pack 2 (server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2008
Operating System: * *
{ "version_exact": "service pack 2"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2008
Operating System: * *
{ "version_exact": "r2 service pack 1"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2012
Operating System: * *
{ "version_exact": "r2"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2012
Operating System: * *
{ "version_exact": "r2 (server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2012
Operating System: * *
{ "version_exact": "(server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2012
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2016
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2016
Operating System: * *
{ "version_exact": "(server core installation)"}
Source: bdu
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7606
Operating System: Windows 14393 build 7606
Identifier: KB5048671
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20710
Operating System: Windows 10240 build 20710
Identifier: KB5040448
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20596
Operating System: Windows 10240 build 20596
Identifier: KB5036925
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20402
Operating System: Windows 10240 build 20402
Identifier: KB5034134
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20526
Operating System: Windows 10240 build 20526
Identifier: KB5035858
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20469
Operating System: Windows 10240 build 20469
Identifier: KB5034774
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6452
Operating System: Windows 14393 build 6452
Identifier: KB5032197
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6529
Operating System: Windows 14393 build 6529
Identifier: KB5033373
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20308
Operating System: Windows 10240 build 20308
Identifier: KB5032199
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20345
Operating System: Windows 10240 build 20345
Identifier: KB5033379
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20232
Operating System: Windows 10240 build 20232
Identifier: KB5031377
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20162
Operating System: Windows 10240 build 20162
Identifier: KB5030220
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20107
Operating System: Windows 10240 build 20107
Identifier: KB5029259
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20048
Operating System: Windows 10240 build 20048
Identifier: KB5028186
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.19983
Operating System: Windows 10240 build 19983
Identifier: KB5027230
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.19986
Operating System: Windows 10240 build 19986
Identifier: KB5028622
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5989
Operating System: Windows 14393 build 5989
Identifier: KB5027219
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5996
Operating System: Windows 14393 build 5996
Identifier: KB5028623
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.3.9600.21013
Operating System: Windows 9600 build 21013
Identifier: KB5027271
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.2.9200.24314
Operating System: Windows 9200 build 24314
Identifier: KB5027283
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.1.7601.26564
Operating System: Windows 7601 build 26564
Identifier: KB5027275
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.0.6003.22113
Operating System: Windows 6003 build 22113
Identifier: KB5027279
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.1.7601.26519
Operating System: Windows 7601 build 26519
Identifier: KB5026413
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.1.7601.26519
Operating System: Windows 7601 build 26519
Identifier: KB5026426
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.0.6003.22070
Operating System: Windows 6003 build 22070
Identifier: KB5026408
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.0.6003.22070
Operating System: Windows 6003 build 22070
Identifier: KB5026427
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.19926
Operating System: Windows 10240 build 19926
Identifier: KB5026382
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8519
Operating System: Windows 14393 build 8519
Identifier: KB5066836
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8422
Operating System: Windows 14393 build 8422
Identifier: KB5065427
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8246
Operating System: Windows 14393 build 8246
Identifier: KB5062560
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8148
Operating System: Windows 14393 build 8148
Identifier: KB5061010
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8066
Operating System: Windows 14393 build 8066
Identifier: KB5058383
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7969
Operating System: Windows 14393 build 7969
Identifier: KB5055521
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6981
Operating System: Windows 14393 build 6981
Identifier: KB5037763
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7515
Operating System: Windows 14393 build 7515
Identifier: KB5046612
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7336
Operating System: Windows 14393 build 7336
Identifier: KB5043051
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7070
Operating System: Windows 14393 build 7070
Identifier: KB5039214
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6897
Operating System: Windows 14393 build 6897
Identifier: KB5036899
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6800
Operating System: Windows 14393 build 6800
Identifier: KB5037423
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6796
Operating System: Windows 14393 build 6796
Identifier: KB5035855
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6709
Operating System: Windows 14393 build 6709
Identifier: KB5034767
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6614
Operating System: Windows 14393 build 6614
Identifier: KB5034119
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.2.9200.24266
Operating System: Windows 9200 build 24266
Identifier: KB5026419
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.2.9200.24266
Operating System: Windows 9200 build 24266
Identifier: KB5026411
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5921
Operating System: Windows 14393 build 5921
Identifier: KB5026363
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 17763.4377
Operating System: Windows 17763 build 4377
Identifier: KB5026362
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.3.9600.20969
Operating System: Windows 9600 build 20969
Identifier: KB5026415
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 6.3.9600.20969
Operating System: Windows 9600 build 20969
Identifier: KB5026409
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6351
Operating System: Windows 14393 build 6351
Identifier: KB5031362
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6252
Operating System: Windows 14393 build 6252
Identifier: KB5030213
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6167
Operating System: Windows 14393 build 6167
Identifier: KB5029242
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6085
Operating System: Windows 14393 build 6085
Identifier: KB5028169
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8594
Operating System: Windows 14393 build 8594
Identifier: KB5068864
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8524
Operating System: Windows 14393 build 8524
Identifier: KB5070882
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.10240.21161
Operating System: Windows 10240 build 21161
Identifier: KB5066837
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.21128
Operating System: Windows 10240 build 21128
Identifier: KB5065430
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8330
Operating System: Windows 14393 build 8330
Identifier: KB5063871
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.21014
Operating System: Windows 10240 build 21014
Identifier: KB5058387
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.21034
Operating System: Windows 10240 build 21034
Identifier: KB5060998
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.21100
Operating System: Windows 10240 build 21100
Identifier: KB5063889
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.21073
Operating System: Windows 10240 build 21073
Identifier: KB5062561
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20979
Operating System: Windows 10240 build 20979
Identifier: KB5055547
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7973
Operating System: Windows 14393 build 7973
Identifier: KB5058921
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7785
Operating System: Windows 14393 build 7785
Identifier: KB5052006
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7876
Operating System: Windows 14393 build 7876
Identifier: KB5053594
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20915
Operating System: Windows 10240 build 20915
Identifier: KB5052040
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20947
Operating System: Windows 10240 build 20947
Identifier: KB5053618
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20890
Operating System: Windows 10240 build 20890
Identifier: KB5050013
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7699
Operating System: Windows 14393 build 7699
Identifier: KB5049993
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20857
Operating System: Windows 10240 build 20857
Identifier: KB5048703
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20826
Operating System: Windows 10240 build 20826
Identifier: KB5046665
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7428
Operating System: Windows 14393 build 7428
Identifier: KB5044293
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20796
Operating System: Windows 10240 build 20796
Identifier: KB5044286
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20766
Operating System: Windows 10240 build 20766
Identifier: KB5043083
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7259
Operating System: Windows 14393 build 7259
Identifier: KB5041773
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20751
Operating System: Windows 10240 build 20751
Identifier: KB5041782
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7159
Operating System: Windows 14393 build 7159
Identifier: KB5040434
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20680
Operating System: Windows 10240 build 20680
Identifier: KB5039225
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.20651
Operating System: Windows 10240 build 20651
Identifier: KB5037788
Source: msrc