CVE-2023-21689 | THREATINT

Home

Description

Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

PUBLISHED Reserved 2022-12-13 | Published 2023-02-14 | Updated 2025-01-01 | Assigner microsoft

CRITICAL: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Problem types

CWE-122: Heap-based Buffer Overflow

Product status

10.0.17763.0 (custom) before 10.0.17763.4010

affected

10.0.0 (custom) before 10.0.17763.4010

affected

10.0.17763.0 (custom) before 10.0.17763.4010

affected

10.0.17763.0 (custom) before 10.0.17763.4010

affected

10.0.20348.0 (custom) before 10.0.20348.1547

affected

10.0.0 (custom) before 10.0.19042.2604

affected

10.0.0 (custom) before 10.0.22621.1574

affected

10.0.19043.0 (custom) before 10.0.19044.2604

affected

10.0.22621.0 (custom) before 10.0.22621.1265

affected

10.0.19045.0 (custom) before 10.0.19045.2604

affected

10.0.10240.0 (custom) before 10.0.10240.19747

affected

10.0.14393.0 (custom) before 10.0.14393.5717

affected

10.0.14393.0 (custom) before 10.0.14393.5717

affected

10.0.14393.0 (custom) before 10.0.14393.5717

affected

6.1.7601.0 (custom) before 6.1.7601.26366

affected

6.1.7601.0 (custom) before 6.1.7601.26366

affected

6.2.9200.0 (custom) before 6.2.9200.24116

affected

6.2.9200.0 (custom) before 6.2.9200.24116

affected

6.3.9600.0 (custom) before 6.3.9600.20821

affected

6.3.9600.0 (custom) before 6.3.9600.20821

affected

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21689 (Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability) vendor-advisory

cve.org (CVE-2023-21689)

nvd.nist.gov (CVE-2023-21689)

Download JSON

help @ threatint.eu