CVE-2023-21548: Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

high8.1CVSS 3.1

AVNACHPRNUINSUCHIHAH

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

Affected

38 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	windows_10_version_1507	>= 10.0.10240.0 < 10.0.10240.19685	10.0.10240.19685
microsoft	windows_10_version_1607	>= 10.0.14393.0 < 10.0.14393.5648	10.0.14393.5648
microsoft	windows_10_version_1809	>= 10.0.0 < 10.0.17763.3887	10.0.17763.3887
microsoft	windows_10_version_1809	>= 10.0.17763.0 < 10.0.17763.3887	10.0.17763.3887
microsoft	windows_10_version_20h2	>= 10.0.0 < 10.0.19042.2486	10.0.19042.2486
microsoft	windows_10_version_21h2	>= 10.0.19043.0 < 10.0.19044.2486	10.0.19044.2486
microsoft	windows_10_version_22h2	>= 10.0.19045.0 < 10.0.19045.2486	10.0.19045.2486
microsoft	windows_11_version_21h2	>= 10.0.0 < 10.0.22000.1455	10.0.22000.1455
microsoft	windows_11_version_22h2	>= 10.0.22621.0 < 10.0.22621.1105	10.0.22621.1105
microsoft	windows_7	>= 6.1.0 < 6.1.7601.26321	6.1.7601.26321
microsoft	windows_7_service_pack_1	>= 6.1.0 < 6.1.7601.26321	6.1.7601.26321
microsoft	windows_8.1	>= 6.3.0 < 6.3.9600.20778	6.3.9600.20778
microsoft	windows_server_2008	—	—
microsoft	windows_server_2008_r2_service_pack_1	>= 6.1.7601.0 < 6.1.7601.26321	6.1.7601.26321
microsoft	windows_server_2008_service_pack_2	>= 6.0.6003.0 < 6.0.6003.21872	6.0.6003.21872
microsoft	windows_server_2012	—	—
microsoft	windows_server_2012	>= 6.2.9200.0 < 6.2.9200.24075	6.2.9200.24075
microsoft	windows_server_2012_r2	>= 6.3.9600.0 < 6.3.9600.20778	6.3.9600.20778
microsoft	windows_server_2016	>= 10.0.14393.0 < 10.0.14393.5648	10.0.14393.5648
microsoft	windows_server_2019	>= 10.0.17763.0 < 10.0.17763.3887	10.0.17763.3887
microsoft	windows_server_2022	>= 10.0.20348.0 < 10.0.20348.1487	10.0.20348.1487
msrc	windows_10	—	—
msrc	windows_10_version_1607	—	—
msrc	windows_10_version_1809	—	—
msrc	windows_10_version_20h2	—	—