← Back

CVE-2023-21547

nvd nist
Published: Jan 10, 2023Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: secure@microsoft.com (Secondary)

Description

Internet Key Exchange (IKE) Protocol Denial of Service Vulnerability

Affected (18)

Microsoft
9 products
Windows 10 1607
Windows 10 1809
Windows 10 21h2
Windows 10 22h2
Windows 11 21h2
Windows 11 22h2
Windows Server 2016
Windows Server 2019
Windows Server 2022
Configuration A
18 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Windows 10 1607
All versions
Windows 10 1607
All versions
Microsoft
Windows 10 1809
All versions
Windows 10 1809
All versions
Windows 10 1809
All versions
Microsoft
Windows 10 21h2
All versions
Windows 10 21h2
All versions
Windows 10 21h2
All versions
Microsoft
Windows 10 22h2
All versions
Windows 10 22h2
All versions
Windows 10 22h2
All versions
Microsoft
Windows 11 21h2
All versions
Windows 11 21h2
All versions
Microsoft
Windows 11 22h2
All versions
Windows 11 22h2
All versions
Windows Server 2016
All versions
Windows Server 2019
All versions
Windows Server 2022
All versions

Related CWEs

CWE-400
Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.
CWE-476
NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.

References (2)

Source: secure@microsoft.com
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.