CVE-2023-34367

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jun 14, 2023

Updated: Jun 30, 2023

CWE ID 287

Summary

CVE-2023-34367 is a vulnerability affecting Windows 7 that allows for full blind TCP/IP hijacking. This issue lies in the operating system's implementation of TCP/IP and is susceptible to Idle scan attacks. Windows 7, as well as any other unspecified Windows versions before Windows 8, are vulnerable. Although the vendor has classified it as a low severity issue, it poses a significant risk for unauthorized access and control, making it important for users to take necessary precautions.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft Windows 7

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rpDB6k
https://www.cve.org/CVERecord?id=CVE-2023-34367
https://nvd.nist.gov/vuln/detail/CVE-2023-34367

Back to Vulnerability Database