CVE-2023-38149

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 12, 2023

Updated: May 29, 2024

CWE ID 400

Summary

CVE-2023-38149 is a newly disclosed vulnerability affecting the Windows TCP/IP stack. This issue permits an attacker to send carefully crafted packets to trigger a denial-of-service condition on the targeted system. The vulnerability can lead to network congestion and potential service disruptions. Microsoft is urging users to install the available patches to mitigate this risk and prevent potential attacks. The severity of this vulnerability underscores the importance of timely software updates and robust network security measures.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r-OYNU
https://www.cve.org/CVERecord?id=CVE-2023-38149
https://nvd.nist.gov/vuln/detail/CVE-2023-38149

Back to Vulnerability Database

CVE-2023-38149

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations