CVE-2023-28244

Опубликовано: 11 апр. 2023

Источник: msrc

CVSS3: 8.1

EPSS Низкий

Описание

Windows Kerberos Elevation of Privilege Vulnerability

Меры по смягчению последствий

The following mitigating factors might be helpful in your situation:

Systems running Windows Defender Credential Guard will block this attack.

FAQ

According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?

The attacker must inject themselves into the logical network path between the target and the resource requested by the victim to read or modify network communications. This is called a machine-in-the-middle (MITM) attack.

How could an attacker exploit this vulnerability?

An unauthenticated attacker could perform a man-in-the-middle network exploit to downgrade a client's encryption to the RC4-md4 cypher, followed by cracking the user's cypher key. The attacker could then compromise the user's Kerberos session key to elevate privileges.

What privileges could be gained by an attacker who successfully exploited the vulnerability?

An attacker who successfully exploited this vulnerability could gain the privileges of the targeted user.

Обновления

Продукт	Статья	Обновление
Windows Server 2008 for 32-bit Systems Service Pack 2	5025271 5025273	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2	5025271 5025273	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)	5025271 5025273	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)	5025279 5025277	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1	5025279 5025277	Monthly Rollup Security Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)	5025271 5025273	Monthly Rollup Security Only
Windows Server 2012	5025287 5025272	Monthly Rollup Security Only
Windows Server 2012 (Server Core installation)	5025287 5025272	Monthly Rollup Security Only
Windows Server 2012 R2	5025285 5025288	Monthly Rollup Security Only
Windows Server 2012 R2 (Server Core installation)	5025285 5025288	Monthly Rollup Security Only

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 86%

0.03226

Низкий

8.1 High

CVSS3

Связанные уязвимости

CVE-2023-28244

CVSS3: 8.1

nvd

около 2 лет назад

Windows Kerberos Elevation of Privilege Vulnerability

GHSA-3xmh-pj8g-v9w9

CVSS3: 8.1

github

около 2 лет назад

Windows Kerberos Elevation of Privilege Vulnerability

BDU:2023-02177

CVSS3: 8.1

fstec

около 2 лет назад

Уязвимость реализации протокола Kerberos операционных систем Windows, позволяющая нарушителю реализовать атаку «человек посередине» и повысить свои привилегии

EPSS

Процентиль: 86%

0.03226

Низкий

8.1 High

CVSS3