CVE-2023-32054

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Jul 11, 2023

Updated: May 29, 2024

CWE ID 36

Summary

CVE-2023-32054 is a critical Elevation of Privilege vulnerability affecting Volume Shadow Copy service. Attackers can exploit this flaw to gain system-level access on vulnerable systems. The vulnerability arises due to insufficient access checks during the processing of Volume Shadow Copy requests. Successful exploitation allows attackers to execute arbitrary code with administrative privileges. Organizations are strongly advised to apply the available patches as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r9RRAX
https://www.cve.org/CVERecord?id=CVE-2023-32054
https://nvd.nist.gov/vuln/detail/CVE-2023-32054

Back to Vulnerability Database

CVE-2023-32054

CVSS 3.1 Score 7.3 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations