Windows NFS RCE in Network File System (NFS) Service
CVE-2023-24941 Published on May 9, 2023
Windows Network File System Remote Code Execution Vulnerability
Windows Network File System Remote Code Execution Vulnerability
Weakness Type
Use of Uninitialized Resource
The software uses or accesses a resource that has not been initialized. When a resource has not been properly initialized, the software may behave unexpectedly. This may lead to a crash or invalid memory access, but the consequences vary depending on the type of resource and how it is used within the software.
Products Associated with CVE-2023-24941
Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.
Affected Versions
Microsoft Windows Server 2019:- Version 10.0.17763.0 and below 10.0.17763.4377 is affected.
- Version 10.0.17763.0 and below 10.0.17763.4377 is affected.
- Version 10.0.20348.0 and below 10.0.20348.1726 is affected.
- Version 10.0.14393.0 and below 10.0.14393.5921 is affected.
- Version 10.0.14393.0 and below 10.0.14393.5921 is affected.
- Version 6.2.9200.0 and below 6.2.9200.24266 is affected.
- Version 6.2.9200.0 and below 6.2.9200.24266 is affected.
- Version 6.3.9600.0 and below 6.3.9600.20969 is affected.
- Version 6.3.9600.0 and below 6.3.9600.20969 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.