CVE-2023-21768
Scores
EPSS
Percentile: 75.5%
CVSS
CVSS Score: 7.8/10
All CVSS Scores
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vector Breakdown
CVSS (Common Vulnerability Scoring System) vector provides detailed metrics about vulnerability characteristics
CVSS
Attack Vector
Local (L)
Describes how the vulnerability is exploited
Attack Complexity
Low (L)
Describes the conditions beyond the attacker's control
Privileges Required
Low (L)
Describes the level of privileges an attacker must possess
User Interaction
None (N)
Captures the requirement for a human user participation
Scope
Unchanged (U)
Determines if a successful attack impacts components beyond the vulnerable component
Confidentiality Impact
High (H)
Measures the impact to the confidentiality of information
Integrity Impact
High (H)
Measures the impact to integrity of a successfully exploited vulnerability
Availability Impact
High (H)
Measures the impact to the availability of the impacted component
Description
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Scaner-VS 7 — a modern vulnerability management solution
Sources
CWEs
Related Vulnerabilities
Exploits
Exploit ID: CVE-2023-21768
Source: github-poc
URL: https://github.com/radoi-teodor/CVE-2023-21768-DSE-Bypass
Vulnerable Software (149)
Type: Configuration
Vendor: *
Product: windows_11
Operating System: * * *
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:21h2:*:*:*:*:*:arm64:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:21h2:*:*:*:*...
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:21h2:*:*:*:*:*:arm64:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:21h2:*:*:*:*:*:x64:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:22h2:*:*:*:*:*:arm64:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:22h2:*:*:*:*:*:x64:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", "vulnerable": true } ], "operator": "OR"}
Source: nvd
Type: Configuration
Vendor: *
Product: windows_server_2022
Operating System: * * *
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:21h2:*:*:*:*:*:arm64:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:21h2:*:*:*:*...
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:21h2:*:*:*:*:*:arm64:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:21h2:*:*:*:*:*:x64:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:22h2:*:*:*:*:*:arm64:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:microsoft:windows_11:22h2:*:*:*:*:*:x64:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", "vulnerable": true } ], "operator": "OR"}
Source: nvd
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.1455
Operating System: Windows 22000 build 1455
Identifier: KB5022287
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 22000.1761
Operating System: Windows 22000 build 1761
Identifier: KB5023774
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.3079
Operating System: Windows 22000 build 3079
Identifier: KB5040431
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.3260
Operating System: Windows 22000 build 3260
Identifier: KB5044280
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.3197
Operating System: Windows 22000 build 3197
Identifier: KB5043067
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.2057
Operating System: Windows 22000 build 2057
Identifier: KB5027223
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.3147
Operating System: Windows 22000 build 3147
Identifier: KB5041592
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.2295
Operating System: Windows 22000 build 2295
Identifier: KB5029253
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 22000.1641
Operating System: Windows 22000 build 1641
Identifier: KB5022905
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.2836
Operating System: Windows 22000 build 2836
Identifier: KB5035854
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.2960
Operating System: Windows 22000 build 2960
Identifier: KB5037770
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.2899
Operating System: Windows 22000 build 2899
Identifier: KB5036894
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 22000.2360
Operating System: Windows 22000 build 2360
Identifier: KB5029332
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.2538
Operating System: Windows 22000 build 2538
Identifier: KB5031358
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22621.1574
Operating System: Windows 22621 build 1574
Identifier: KB5022836
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.1936
Operating System: Windows 22000 build 1936
Identifier: KB5026368
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.1696
Operating System: Windows 22000 build 1696
Identifier: KB5023698
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10.0.22000.2416
Operating System: Windows 22000 build 2416
Identifier: KB5030217
Source: msrc