The remote Windows host is missing security update 5023752. It is, therefore, affected by multiple vulnerabilities

– Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability (CVE-2023-23415)

– Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2023-21708, CVE-2023-23405, CVE-2023-24869, CVE-2023-24908)

– Windows Point-to-Point Protocol over Ethernet (PPPoE) Elevation of Privilege Vulnerability (CVE-2023-23385)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.Read More