CVE-2023-28297: Windows Remote Procedure Call Service (RPCSS) Elevation of Privilege Vulnerability

high8.8CVSS 3.1

AVNACLPRLUINSUCHIHAH

Windows Remote Procedure Call Service (RPCSS) Elevation of Privilege Vulnerability

Affected

34 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	windows_10_1607	< 10.0.14393.5648	10.0.14393.5648
microsoft	windows_10_1809	< 10.0.17763.3887	10.0.17763.3887
microsoft	windows_10_20h2	< 10.0.19042.2486	10.0.19042.2486
microsoft	windows_10_21h2	< 10.0.19044.2486	10.0.19044.2486
microsoft	windows_10_22h2	< 10.0.19045.2486	10.0.19045.2486
microsoft	windows_10_version_1507	>= 10.0.10240.0 < 10.0.10240.19685	10.0.10240.19685
microsoft	windows_10_version_1607	>= 10.0.14393.0 < 10.0.14393.5648	10.0.14393.5648
microsoft	windows_10_version_1809	>= 10.0.0 < 10.0.17763.3887	10.0.17763.3887
microsoft	windows_10_version_1809	>= 10.0.17763.0 < 10.0.17763.3887	10.0.17763.3887
microsoft	windows_10_version_20h2	>= 10.0.0 < 10.0.19042.2486	10.0.19042.2486
microsoft	windows_10_version_21h2	>= 10.0.19043.0 < 10.0.19044.2486	10.0.19044.2486
microsoft	windows_10_version_22h2	>= 10.0.19045.0 < 10.0.19045.2486	10.0.19045.2486
microsoft	windows_11_22h2	< 10.0.22621.1105	10.0.22621.1105
microsoft	windows_11_version_21h2	>= 10.0.0 < 10.0.22000.1455	10.0.22000.1455
microsoft	windows_11_version_22h2	>= 10.0.22621.0 < 10.0.22621.1105	10.0.22621.1105
microsoft	windows_server_2012	—	—
microsoft	windows_server_2012	>= 6.2.9200.0 < 6.2.9200.24075	6.2.9200.24075
microsoft	windows_server_2012_r2	>= 6.3.9600.0 < 6.3.9600.20778	6.3.9600.20778
microsoft	windows_server_2016	>= 10.0.14393.0 < 10.0.14393.5648	10.0.14393.5648
microsoft	windows_server_2019	>= 10.0.17763.0 < 10.0.17763.3887	10.0.17763.3887
microsoft	windows_server_2022	>= 10.0.20348.0 < 10.0.20348.1487	10.0.20348.1487
msrc	windows_10	—	—
msrc	windows_10_version_1607	—	—
msrc	windows_10_version_1809	—	—
msrc	windows_10_version_20h2	—	—