Description
Windows DNS Server Remote Code Execution Vulnerability
Reserved 2023-03-13 | Published 2023-04-11 | Updated 2025-01-23 | Assigner
microsoftMEDIUM: 6.6CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
CWE-591: Sensitive Data Storage in Improperly Locked Memory
Product status
10.0.17763.0 before 10.0.17763.4252
affected
10.0.17763.0 before 10.0.17763.4252
affected
10.0.20348.0 before 10.0.20348.1668
affected
10.0.14393.0 before 10.0.14393.5850
affected
10.0.14393.0 before 10.0.14393.5850
affected
6.0.6003.0 before 6.0.6003.22015
affected
6.0.6003.0 before 6.0.6003.22015
affected
6.0.6003.0 before 6.0.6003.22015
affected
6.1.7601.0 before 6.1.7601.26466
affected
6.1.7601.0 before 6.1.7601.26466
affected
6.2.9200.0 before 6.2.9200.24216
affected
6.2.9200.0 before 6.2.9200.24216
affected
6.3.9600.0 before 6.3.9600.20919
affected
6.3.9600.0 before 6.3.9600.20919
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28278 (Windows DNS Server Remote Code Execution Vulnerability) vendor-advisory
cve.org (CVE-2023-28278)
nvd.nist.gov (CVE-2023-28278)
Download JSON