{ "id": "CVE-2023-21739", "sourceIdentifier": "secure@microsoft.com", "published": "2023-01-10T22:15:17.727", "lastModified": "2024-11-21T07:43:32.740", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { "lang": "en", "value": "Windows Bluetooth Driver Elevation of Privilege Vulnerability" }, { "lang": "es", "value": "Vulnerabilidad de elevaci\u00f3n de privilegios del controlador Bluetooth de Windows" } ], "metrics": { "cvssMetricV31": [ { "source": "secure@microsoft.com", "type": "Primary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.0, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH" }, "exploitabilityScore": 1.0, "impactScore": 5.9 }, { "source": "nvd@nist.gov", "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.0, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH" }, "exploitabilityScore": 1.0, "impactScore": 5.9 } ] }, "weaknesses": [ { "source": "secure@microsoft.com", "type": "Secondary", "description": [ { "lang": "en", "value": "CWE-591" } ] }, { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*", "versionEndExcluding": "10.0.10240.19685", "matchCriteriaId": "2C1346B1-2E6B-43BA-B4FE-921668FE7FA5" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*", "versionEndExcluding": "10.0.10240.19685", "matchCriteriaId": "837328F0-3327-4282-A052-4B2B70A32AD0" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*", "versionEndExcluding": "10.0.14393.5648", "matchCriteriaId": "ACFC4492-F6E5-4E87-9ACD-73AFCBF83549" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*", "versionEndExcluding": "10.0.14393.5648", "matchCriteriaId": "9010C07B-7688-4847-9847-6FCD52F57EFD" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*", "versionEndExcluding": "10.0.17763.3887", "matchCriteriaId": "A7F8B54C-4564-497A-9786-876A516219C3" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:arm64:*", "versionEndExcluding": "10.0.19042.2486", "matchCriteriaId": "AED7EFB9-EC40-46C7-B7E2-B0FE245D83E0" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x86:*", "versionEndExcluding": "10.0.19042.2486", "matchCriteriaId": "940EAE2A-CF3C-4372-B00C-0E078FDA4998" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*", "versionEndExcluding": "10.0.19044.2486", "matchCriteriaId": "05BF289F-51FE-4CE5-8487-D909E4CA3D77" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*", "versionEndExcluding": "10.0.19045.2486", "matchCriteriaId": "127FA76C-101B-4DAB-9034-1B893016D06A" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:arm64:*", "versionEndExcluding": "10.0.22000.1455", "matchCriteriaId": "0EB4809B-34A4-4F53-A0AF-689638CF2F91" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:x64:*", "versionEndExcluding": "10.0.22000.1455", "matchCriteriaId": "A809468E-4FB6-4421-924E-246A2A447F92" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:arm64:*", "versionEndExcluding": "10.0.22621.1105", "matchCriteriaId": "088C88B9-1BAD-49B2-8E7C-7003C207E311" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:x64:*", "versionEndExcluding": "10.0.22621.1105", "matchCriteriaId": "829629EE-33A6-405B-972E-EF0AD42A3574" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x64:*", "versionEndExcluding": "6.3.9600.20778", "matchCriteriaId": "774117D4-07C8-49B6-A2CA-842FD898CFF6" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x86:*", "versionEndExcluding": "6.3.9600.20778", "matchCriteriaId": "DCD363DB-4667-472D-832F-760AE785E607" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:x64:*", "versionEndExcluding": "6.3.9600.20778", "matchCriteriaId": "943EF503-E48A-4756-A78D-C26F8CC3417F" }, { "vulnerable": true, "criteria": "cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:x86:*", "versionEndExcluding": "6.3.9600.20778", "matchCriteriaId": "5095B736-5803-4695-ADD9-7AEC06F72C83" } ] } ] } ], "references": [ { "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21739", "source": "secure@microsoft.com", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21739", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Patch", "Vendor Advisory" ] } ] }