CVE-2023-28234

Опубликовано: 11 апр. 2023

Источник: msrc

CVSS3: 7.5

EPSS Низкий

Описание

Windows Secure Channel Denial of Service Vulnerability

Does this vulnerability affect all versions of TLS?

No. Only those devices running TLS 1.3 are affected. For more information on supported TLS implementations please visit: https://learn.microsoft.com/en-us/windows/win32/secauthn/protocols-in-tls-ssl--schannel-ssp-

Продукт	Статья	Обновление
Windows Server 2022	5025230	Security Update
Windows Server 2022 (Server Core installation)	5025230	Security Update
Windows 11 version 21H2 for x64-based Systems	5025224	Security Update
Windows 11 version 21H2 for ARM64-based Systems	5025224	Security Update
Windows 11 Version 22H2 for ARM64-based Systems	5025239	Security Update
Windows 11 Version 22H2 for x64-based Systems	5025239	Security Update

Показывать по

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 88%

0.03801

Низкий

7.5 High

CVSS3

CVE-2023-28234

CVSS3: 7.5

nvd

около 2 лет назад

Windows Secure Channel Denial of Service Vulnerability

GHSA-qm8c-vqq5-h63g

CVSS3: 7.5

github

около 2 лет назад

Windows Secure Channel Denial of Service Vulnerability

BDU:2023-02209

CVSS3: 7.5

fstec

около 2 лет назад

Уязвимость компонента Secure Channel (Schannel) операционных систем Windows, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 88%

0.03801

Низкий

7.5 High

CVSS3