Description
Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
Reserved 2023-01-31 | Published 2023-03-14 | Updated 2024-08-02 | Assigner
microsoftHIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
Problem types
CWE-476: NULL Pointer Dereference
Product status
10.0.0 before 10.0.17763.4131
affected
10.0.0 before 10.0.17763.4131
affected
10.0.0 before 10.0.17763.4131
affected
10.0.0 before 10.0.20348.1607
affected
10.0.0 before 10.0.20348.1602
affected
10.0.0 before 10.0.19042.2728
affected
10.0.0 before 10.0.22000.1696
affected
10.0.0 before 10.0.19044.2728
affected
10.0.0 before 10.0.22621.1413
affected
10.0.0 before 10.0.19045.2728
affected
10.0.0 before 10.0.10240.19805
affected
10.0.0 before 10.0.14393.5786
affected
10.0.0 before 10.0.14393.5786
affected
10.0.0 before 10.0.14393.5786
affected
6.2.0 before 6.2.9200.24168
affected
6.2.0 before 6.2.9200.24168
affected
6.3.0 before 6.3.9600.20865
affected
6.3.0 before 6.3.9600.20865
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24859 (Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability) vendor-advisory
cve.org (CVE-2023-24859)
nvd.nist.gov (CVE-2023-24859)
Download JSON
Subscribe to our newsletter to learn more about our work.