CVE-2023-36596: Remote Procedure Call Information Disclosure Vulnerability
First published: Tue Oct 10 2023(Updated: )
Remote Procedure Call Information Disclosure Vulnerability
Credit: secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows Server 2012 R2 | ||
| Microsoft Windows Server 2022 | ||
| Microsoft Windows Server 2012 R2 | ||
| Microsoft Windows 10 | =1607 | |
| Microsoft Windows 10 | =1809 | |
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2012 | ||
| Microsoft Windows 10 | =1809 | |
| Microsoft Windows 11 | =22H2 | |
| Microsoft Windows 10 | =22H2 | |
| Microsoft Windows 10 | ||
| Microsoft Windows 10 | =21H2 | |
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2022 | ||
| Microsoft Windows 10 | =1809 | |
| Microsoft Windows 11 | =22H2 | |
| Microsoft Windows 11 | =21H2 | |
| Microsoft Windows 10 | =21H2 | |
| Microsoft Windows 10 | =22H2 | |
| Microsoft Windows 10 | ||
| Microsoft Windows 10 | =1607 | |
| Microsoft Windows 10 | =22H2 | |
| Microsoft Windows 10 | =21H2 | |
| Microsoft Windows 11 | =21H2 | |
| Microsoft Windows Server 2012 | ||
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2016 | ||
| Microsoft Windows 10 | <10.0.10240.20232 | |
| Microsoft Windows 10 | <10.0.10240.20232 | |
| Microsoft Windows 10 1809 | <10.0.17763.4974 | |
| Microsoft Windows 10 1809 | <10.0.17763.4974 | |
| Microsoft Windows 10 1809 | <10.0.17763.4974 | |
| Microsoft Windows 10 21h1 | <10.0.19041.3570 | |
| Microsoft Windows 10 21h1 | <10.0.19041.3570 | |
| Microsoft Windows 10 21h1 | <10.0.19041.3570 | |
| Microsoft Windows 10 22h2 | <10.0.19041.3570 | |
| Microsoft Windows 10 22h2 | <10.0.19041.3570 | |
| Microsoft Windows 10 22h2 | <10.0.19041.3570 | |
| Microsoft Windows 11 21h2 | <10.0.22000.2538 | |
| Microsoft Windows 11 21h2 | <10.0.22000.2538 | |
| Microsoft Windows 11 22h2 | <10.0.22621.2428 | |
| Microsoft Windows 11 22h2 | <10.0.22621.2428 | |
| Microsoft Windows Server 2012 | ||
| Microsoft Windows Server 2012 | =r2 | |
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2022 | ||
| Microsoft Windows 10 1507 | <10.0.10240.20232 | |
| Microsoft Windows 10 1507 | <10.0.10240.20232 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2023-36596.
What is the severity of CVE-2023-36596?
CVE-2023-36596 has a severity value of 6.5, which is considered high.
Which software products are affected by CVE-2023-36596?
The following software products are affected by CVE-2023-36596: Windows 10 (version 1809), Windows Server 2016 (Server Core Installation), Windows Server 2012 R2, Windows 11 (version 21H2), Windows 11 (version 22H2), Windows Server 2019, Windows 10 (version 22H2), Windows 10 (version 1607), Windows Server 2012, Windows 11 (version 22H2), Windows 10 (version 1809), Windows Server 2022, and Windows 10 (version 21H2).
How do I fix CVE-2023-36596?
To fix CVE-2023-36596, you can apply the relevant patches provided by Microsoft. The specific patch URLs can be found in the Microsoft support articles linked to the respective software products mentioned in the affected software section.
Where can I find more information about CVE-2023-36596?
You can find more information about CVE-2023-36596 on the Microsoft Security Response Center (MSRC) website. The reference link provided in the vulnerability details section will direct you to the relevant page.
- agent/author
- agent/type
- agent/first-publish-date
- collector/msrc
- source/Microsoft
- collector/msrc-cve
- agent/software-canonical-lookup
- agent/remedy
- agent/title
- agent/weakness
- agent/severity
- agent/references
- agent/description
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/nvd-api
- source/NVD
- vendor/microsoft
- canonical/microsoft windows server 2012 r2
- canonical/microsoft windows server 2022
- canonical/microsoft windows 10
- version/microsoft windows 10/1607
- version/microsoft windows 10/1809
- canonical/microsoft windows server 2019
- canonical/microsoft windows server 2012
- canonical/microsoft windows 11
- version/microsoft windows 11/22h2
- version/microsoft windows 10/22h2
- version/microsoft windows 10/21h2
- version/microsoft windows 11/21h2
- canonical/microsoft windows server 2016
- canonical/microsoft windows 10 1809
- canonical/microsoft windows 10 21h1
- canonical/microsoft windows 10 22h2
- canonical/microsoft windows 11 21h2
- canonical/microsoft windows 11 22h2
- version/microsoft windows server 2012/r2
- canonical/microsoft windows 10 1507