| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2023-38148 | Internet Connection Sharing (ICS) Remote Code Execution Vulnerability | Windows 11 | Critical | 25-09-2023 |
Technical Information
Internet Connection Sharing service, a built-in feature in Windows, is a type of LAN which allows multiple devices to connect to the internet using one internet connection on one computer. In a same network segment an unauthorized attacker could gain remote code execution by sending a specially crafted network packet to the Internet Connection Sharing service if the sevice is enabled.
Further information on this vulnerability is available at : CVE-2023-38148
Affected Software
Windows Server 2022,Windows Server 2022 (Server Core installation),
Windows 11 version 21H2 for x64-based Systems,
Windows 11 version 21H2 for ARM64-based Systems,
Windows 10 Version 21H2 for 32-bit Systems,
Windows 10 Version 21H2 for ARM64-based Systems,
Windows 10 Version 21H2 for x64-based Systems,
Windows 11 Version 22H2 for ARM64-based Systems,
Windows 11 Version 22H2 for x64-based Systems,
Windows 10 Version 22H2 for x64-based Systems,
Windows 10 Version 22H2 for ARM64-based Systems,
Windows 10 Version 22H2 for 32-bit Systems