Description
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions.
Below is a complete list of vulnerabilities:
- A denial of service vulnerability in Windows Layer 2 Tunneling Protocol (L2TP) can be exploited remotely to cause denial of service.
- An elevation of privilege vulnerability in Microsoft Cryptographic Services can be exploited remotely to gain privileges.
- An information disclosure vulnerability in Windows Overlay Filter can be exploited remotely to obtain sensitive information.
- A remote code execution vulnerability in Windows Layer 2 Tunneling Protocol (L2TP) can be exploited remotely to execute arbitrary code.
- An elevation of privilege vulnerability in Windows GDI can be exploited remotely to gain privileges.
- An information disclosure vulnerability in Windows Cryptographic can be exploited remotely to obtain sensitive information.
- A remote code execution vulnerability in Windows Lightweight Directory Access Protocol (LDAP) can be exploited remotely to execute arbitrary code.
- A denial of service vulnerability in Windows Internet Key Exchange (IKE) Extension can be exploited remotely to cause denial of service.
- A security feature bypass vulnerability in BitLocker can be exploited remotely to bypass security restrictions.
- A denial of service vulnerability in Windows iSCSI Service can be exploited remotely to cause denial of service.
- An elevation of privilege vulnerability in Windows Kernel can be exploited remotely to gain privileges.
- A denial of service vulnerability in Windows Netlogon can be exploited remotely to cause denial of service.
- An elevation of privilege vulnerability in Windows NTLM can be exploited remotely to gain privileges.
- A remote code execution vulnerability in Microsoft ODBC Driver can be exploited remotely to execute arbitrary code.
- A remote code execution vulnerability in Windows Secure Socket Tunneling Protocol (SSTP) can be exploited remotely to execute arbitrary code.
- An information disclosure vulnerability in Event Tracing for Windows can be exploited remotely to obtain sensitive information.
- An elevation of privilege vulnerability in Microsoft DWM Core Library can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows SMB Witness Service can be exploited remotely to gain privileges.
- A security feature bypass vulnerability in Windows Boot Manager can be exploited remotely to bypass security restrictions.
- A denial of service vulnerability in Windows Lightweight Directory Access Protocol (LDAP) can be exploited remotely to cause denial of service.
- A security feature bypass vulnerability in Windows Smart Card Resource Management Server can be exploited remotely to bypass security restrictions.
- An elevation of privilege vulnerability in Windows Bluetooth Driver can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Win32k can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Error Reporting Service can be exploited remotely to gain privileges.
- A remote code execution vulnerability in Microsoft WDAC OLE DB provider for SQL Server can be exploited remotely to execute arbitrary code.
- An elevation of privilege vulnerability in Windows Local Session Manager (LSM) can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Print Spooler can be exploited remotely to gain privileges.
- A denial of service vulnerability in Remote Procedure Call Runtime can be exploited remotely to cause denial of service.
- An elevation of privilege vulnerability in Windows Overlay Filter can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Advanced Local Procedure Call (ALPC) can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Microsoft Message Queuing (MSMQ) can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Backup Service can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Installer can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Bind Filter Driver can be exploited remotely to gain privileges.
- An information disclosure vulnerability in Windows Kernel can be exploited remotely to obtain sensitive information.
- An elevation of privilege vulnerability in Windows Credential Manager User Interface can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Task Scheduler can be exploited remotely to gain privileges.
- A remote code execution vulnerability in Windows Authentication can be exploited remotely to execute arbitrary code.
- An elevation of privilege vulnerability in Windows Local Security Authority (LSA) can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Ancillary Function Driver for WinSock can be exploited remotely to gain privileges.
- A denial of service vulnerability in Internet Key Exchange (IKE) Protocol can be exploited remotely to cause denial of service.
- An information disclosure vulnerability in Windows Point-to-Point Protocol (PPP) can be exploited remotely to obtain sensitive information.
Original advisories
- CVE-2023-21730
- CVE-2023-21766
- CVE-2023-21555
- CVE-2023-21532
- CVE-2023-21550
- CVE-2023-21676
- CVE-2023-21758
- CVE-2023-21563
- CVE-2023-21527
- CVE-2023-21772
- CVE-2023-21754
- CVE-2023-21728
- CVE-2023-21679
- CVE-2023-21746
- CVE-2023-21749
- CVE-2023-21732
- CVE-2023-21535
- CVE-2023-21536
- CVE-2023-21774
- CVE-2023-21724
- CVE-2023-21556
- CVE-2023-21559
- CVE-2023-21549
- CVE-2023-21552
- CVE-2023-21683
- CVE-2023-21560
- CVE-2023-21557
- CVE-2023-21759
- CVE-2023-21739
- CVE-2023-21753
- CVE-2023-21680
- CVE-2023-21773
- CVE-2023-21558
- CVE-2023-21681
- CVE-2023-21771
- CVE-2023-21546
- CVE-2023-21765
- CVE-2023-21525
- CVE-2023-21767
- CVE-2023-21674
- CVE-2023-21537
- CVE-2023-21675
- CVE-2023-21760
- CVE-2023-21750
- CVE-2023-21551
- CVE-2023-21548
- CVE-2023-21752
- CVE-2023-21542
- CVE-2023-21733
- CVE-2023-21543
- CVE-2023-21776
- CVE-2023-21726
- CVE-2023-21677
- CVE-2023-21541
- CVE-2023-21561
- CVE-2023-21747
- CVE-2023-21748
- CVE-2023-21539
- CVE-2023-21524
- CVE-2023-21678
- CVE-2023-21768
- CVE-2023-21547
- CVE-2023-21755
- CVE-2023-21540
- CVE-2023-21682
Exploitation
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Related products
- Microsoft-Windows
- Microsoft-Windows-Server
- Microsoft-Windows-8
- Windows-RT
- Microsoft-Windows-10
- Microsoft-Windows-Server-2016
- Microsoft-Windows-Server-2019
- Microsoft-Windows-11
CVE list
- CVE-2023-21757 critical
- CVE-2023-21730 critical
- CVE-2023-21766 warning
- CVE-2023-21555 critical
- CVE-2023-21532 high
- CVE-2023-21550 high
- CVE-2023-21676 critical
- CVE-2023-21758 critical
- CVE-2023-21563 high
- CVE-2023-21527 critical
- CVE-2023-21772 critical
- CVE-2023-21754 critical
- CVE-2023-21728 critical
- CVE-2023-21679 critical
- CVE-2023-21746 critical
- CVE-2023-21749 critical
- CVE-2023-21732 critical
- CVE-2023-21535 critical
- CVE-2023-21536 warning
- CVE-2023-21774 critical
- CVE-2023-21724 critical
- CVE-2023-21556 critical
- CVE-2023-21559 high
- CVE-2023-21549 critical
- CVE-2023-21552 critical
- CVE-2023-21683 critical
- CVE-2023-21560 high
- CVE-2023-21557 critical
- CVE-2023-21759 warning
- CVE-2023-21739 high
- CVE-2023-21753 high
- CVE-2023-21680 critical
- CVE-2023-21773 critical
- CVE-2023-21558 critical
- CVE-2023-21681 critical
- CVE-2023-21771 high
- CVE-2023-21546 critical
- CVE-2023-21765 critical
- CVE-2023-21525 high
- CVE-2023-21767 critical
- CVE-2023-21674 critical
- CVE-2023-21537 critical
- CVE-2023-21675 critical
- CVE-2023-21760 high
- CVE-2023-21750 high
- CVE-2023-21551 critical
- CVE-2023-21548 critical
- CVE-2023-21752 high
- CVE-2023-21542 high
- CVE-2023-21733 high
- CVE-2023-21543 critical
- CVE-2023-21776 high
- CVE-2023-21726 critical
- CVE-2023-21677 critical
- CVE-2023-21541 critical
- CVE-2023-21561 critical
- CVE-2023-21747 critical
- CVE-2023-21748 critical
- CVE-2023-21539 critical
- CVE-2023-21524 critical
- CVE-2023-21678 critical
- CVE-2023-21768 critical
- CVE-2023-21547 critical
- CVE-2023-21755 critical
- CVE-2023-21540 high
- CVE-2023-21682 high
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!