CVE-2023-35622: 
vulnerability analysis and mitigation

Windows DNS Spoofing Vulnerability (CVE-2023-35622) was disclosed on December 12, 2023, affecting various Microsoft Windows Server versions including Server 2008, 2012, 2016, 2019, and 2022. This vulnerability has been assigned a CVSS v3.1 base score of 7.5 (High) (Microsoft Advisory).

The vulnerability has been assessed with a CVSS v3.1 vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N, indicating that it is network-accessible, requires low attack complexity, needs no privileges, requires no user interaction, has scope unchanged, with no impact on confidentiality, high impact on integrity, and no impact on availability (NVD).

This DNS spoofing vulnerability could allow an attacker to intercept and manipulate DNS traffic, potentially leading to high integrity impacts on affected systems. The attack vector being network-accessible (AV:N) with no authentication required makes this vulnerability particularly concerning for exposed systems (Rapid7).

Microsoft has released security updates to address this vulnerability across affected Windows Server versions. Updates are available through the standard Windows Update channels and should be applied as soon as possible (Microsoft Advisory).