1. CVE-Search
  2. CVE-2023-36899
ID CVE-2023-36899
Summary ASP.NET Elevation of Privilege Vulnerability
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
    cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
  • cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*
    cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*
  • cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*
    cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*
  • cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*
    cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*
  • cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:arm64:*
    cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:arm64:*
  • cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*
    cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*
  • cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*
    cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*
  • cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*
    cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*
  • cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*
    cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*
  • cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*
    cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*
  • cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*
    cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*
  • cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*
    cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*
  • cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*
    cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*
  • cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*
    cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*
  • cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*
    cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*
CVSS
Base: None
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
Impact
ConfidentialityIntegrityAvailability
Last major update 15-10-2023 - 16:18
Published 08-08-2023 - 19:15
Last modified 15-10-2023 - 16:18
Back to Top