CVE-2023-35298 — Uncontrolled Resource Consumption in Microsoft Windows 11 Version 21h2

CWE-400 — Uncontrolled Resource Consumption2 documents2 sources

Severity

7.5HIGHCNA

No vector

EPSS

0.7%

top 28.65%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

8

Microsoft Windows 11 Version 21h2 Microsoft Windows 11 Version 22h2 Microsoft Windows Server 2022 +5 more

Timeline

PublishedJul 11

Description

HTTP.sys Denial of Service Vulnerability HTTP.sys Denial of Service Vulnerability

Affected Packages8 packages

▶CVEListV5microsoft/windows_server_202210.0.20348.0 — 10.0.20348.1850

▶CVEListV5microsoft/windows_11_version_21h210.0.0 — 10.0.22000.2176

▶CVEListV5microsoft/windows_11_version_22h210.0.22621.0 — 10.0.22621.1992

▶msrcmsrc/windows_server_2022

▶msrcmsrc/windows_11_version_21h2_for_x64-based_systems

🔴Vulnerability Details

1

CVEList

HTTP.sys Denial of Service Vulnerability↗2023-07-11

▶

📋Vendor Advisories

1

Microsoft

HTTP.sys Denial of Service Vulnerability↗2023-07-11

▶

CVE-2023-35298 — Uncontrolled Resource Consumption | cvebase