PT-2023-4380 · Microsoft · Windows Wireless Wide Area Network Service+1

G0St1

Published

2023-08-08

Updated

2024-05-29

CVE-2023-36905

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Windows Wireless Wide Area Network Service (WwanSvc) (affected versions not specified)

Description The issue is related to a lack of protection for service data in the Windows Wireless Wide Area Network Service (WwanSvc), which can allow an attacker to disclose protected information. This can potentially enable the attacker to obtain sensitive information and affect the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-125

Related Identifiers

BDU:2023-04725

CVE-2023-36905

Affected Products

Windows

Windows Wireless Wide Area Network Service

PT-2023-4380 · Microsoft · Windows Wireless Wide Area Network Service+1

CVE-2023-36905

Weakness Enumeration

Related Identifiers

Affected Products

References · 9