General Info

CVE ID CVE-2023-28303
Published Date 2023-06-13 17:15
Last Modified 2024-05-29 04:15
Risk CVSS V2
N/A
Risk CVSS V3
Low
Json View Json

Description

Windows Snipping Tool Information Disclosure Vulnerability

CPE Match

Node Is Vulnerable Last Vulnerable Version
cpe:2.3:a:microsoft:snip_\&_sketch:*:*:*:*:*:*:*:* True 10.2008.3001.0
cpe:2.3:a:microsoft:snipping_tool:*:*:*:*:*:*:*:* True 11.2302.20.0

CVSS Analysis

CVSS Version 2

CVSS Version 3 3.3

Exploitablity Score 1.8

Impact Score 1.4

Impact

Confidentiality LOW
Integrity No
Availability No
Attack Vector LOCAL
Attack Complexity LOW
Required Preveliges No
Required User Itegration REQUIRED

References

Reference Tags
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28303 Vendor Advisory