KEV · Actively exploited
CVE-2023-21823
HIGH 7.8
KEV
Windows Graphics Component Remote Code Execution Vulnerability
EPSS
2.29%
above median
percentile 85.0%
CISA Known Exploited Vulnerability
- Added to KEV
- 2023-02-14
- Remediation deadline
- 2023-03-07
- Required action
- Apply updates per vendor instructions.
- Ransomware
- No
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.
- Windows Fixed in Windows Server 2022 (Server Core installation) 10.0.20348.1547 Windows Server 2022 10.0.20348.1547 Windows Server 2019 (Server Core installation) 10.0.17763.4010 Windows Server 2019 10.0.17763.4010 Windows Server 2016 (Server Core installation) 10.0.14393.5717 Windows Server 2016 10.0.14393.5717 Windows 11 22H2 · 2022-H2 10.0.22621.1265 Windows 11 21H2 · 2021-H2 10.0.22621.1574 Windows 10 22H2 · 2022-H2 10.0.19045.2604 Windows 10 21H2 · 2021-H2 10.0.19044.2604 Windows 10 20H2 · 2020-H2 10.0.19042.2604 Windows 10 1809 · 2018-09 10.0.17763.4010 Windows 10 1607 · 2016-07 10.0.14393.5717