Microsoft Windows Server 2012
Moderate fix2 remedies
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*
Moderate fix2 remedies
Microsoft Windows Cryptographic Information Disclosure Vulnerability
Vulnerability
A cryptographic information disclosure vulnerability exists in multiple Windows products, including various Windows Server versions and Windows 10 and 11. This vulnerability allows an attacker to read the contents of encrypted PKCS1 information from a user mode process, potentially leading to unauthorized access to sensitive data.
Impact
Exploitation of this vulnerability could result in unauthorized access to encrypted information, specifically PKCS1 data, from a user mode process.
Remediation
Users can apply the security update KB5050009 to address this vulnerability. This update is available through the Microsoft Update Catalog. For Windows Server 2022, the relevant update is KB5049984.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
2.5exploitability
3.3remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.