Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

msrc логотип

CVE-2023-28268

Опубликовано: 11 апр. 2023
Источник: msrc
CVSS3: 8.1
EPSS Низкий

Описание

Netlogon RPC Elevation of Privilege Vulnerability

FAQ

According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?

Successful exploitation of this vulnerability requires an attacker to gather information specific to the environment of the targeted component.

What privileges could be gained by an attacker who successfully exploited the vulnerability?

An attacker who successfully exploited this vulnerability could gain the privileges of the targeted user.

How could an attacker exploit this vulnerability?

A machine-in-the-middle (MITM) attacker could leverage cryptographic protocol vulnerabilities in the Windows Netlogon protocol when RPC Signing is used instead of RPC Sealing. Where RPC Signing is used instead of RPC Sealing the attacker could gain control of the service and then might be able to modify Netlogon protocol traffic to elevate their privileges.

Обновления

ПродуктСтатьяОбновление
Windows Server 2008 for 32-bit Systems Service Pack 2
50252715025273
Monthly RollupSecurity Only
Windows Server 2008 for x64-based Systems Service Pack 2
50252715025273
Monthly RollupSecurity Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
50252715025273
Monthly RollupSecurity Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
50252795025277
Monthly RollupSecurity Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1
50252795025277
Monthly RollupSecurity Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
50252715025273
Monthly RollupSecurity Only
Windows Server 2012
50252875025272
Monthly RollupSecurity Only
Windows Server 2012 (Server Core installation)
50252875025272
Monthly RollupSecurity Only
Windows Server 2012 R2
50252855025288
Monthly RollupSecurity Only
Windows Server 2012 R2 (Server Core installation)
50252855025288
Monthly RollupSecurity Only

Показывать по

Возможность эксплуатации

Publicly Disclosed

No

Exploited

No

Latest Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 75%
0.00942
Низкий

8.1 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2023-28268

CVSS3: 8.1
nvd
около 2 лет назад

Netlogon RPC Elevation of Privilege Vulnerability

github логотип

GHSA-2px6-5qxv-8594

CVSS3: 8.1
github
около 2 лет назад

Netlogon RPC Elevation of Privilege Vulnerability

fstec логотип

BDU:2023-02034

CVSS3: 8.1
fstec
около 2 лет назад

Уязвимость интерфейса удаленного вызова процедур Netlogon Remote Protocol (RPC) операционных систем Windows, позволяющая нарушителю повысить свои привилегии

fstec логотип

BDU:2023-02311

CVSS3: 7
fstec
около 2 лет назад

Уязвимость компонента Win32k (Win32k.sys) операционной системы Windows, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 75%
0.00942
Низкий

8.1 High

CVSS3