Description
Windows NTLM Elevation of Privilege Vulnerability
Reserved 2023-03-13 | Published 2023-04-11 | Updated 2025-01-23 | Assigner
microsoftHIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
CWE-122: Heap-based Buffer Overflow
Product status
10.0.17763.0 before 10.0.17763.4252
affected
10.0.0 before 10.0.17763.4252
affected
10.0.17763.0 before 10.0.17763.4252
affected
10.0.17763.0 before 10.0.17763.4252
affected
10.0.20348.0 before 10.0.20348.1668
affected
10.0.0 before 10.0.19042.2846
affected
10.0.0 before 10.0.22000.1817
affected
10.0.19043.0 before 10.0.19044.2846
affected
10.0.22621.0 before 10.0.22621.1555
affected
10.0.19045.0 before 10.0.19045.2846
affected
10.0.10240.0 before 10.0.10240.19869
affected
10.0.14393.0 before 10.0.14393.5850
affected
10.0.14393.0 before 10.0.14393.5850
affected
10.0.14393.0 before 10.0.14393.5850
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28225 (Windows NTLM Elevation of Privilege Vulnerability) vendor-advisory
cve.org (CVE-2023-28225)
nvd.nist.gov (CVE-2023-28225)
Download JSON
Subscribe to our newsletter to learn more about our work.