CVE-2023-33109

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 2, 2024
Updated: Apr 12, 2024
CWE ID 476

Summary

CVE-2023-33109 is a transient Denial of Service (DoS) vulnerability affecting the processing of WMI P2P listen start commands. A maliciously crafted command (0xD00A) sent from a host can trigger the vulnerability, causing a DoS condition. The WMI service is the probable target, and the issue arises due to an improper handling of the command. This vulnerability can lead to significant disruptions in network services if exploited. System administrators are advised to apply patches promptly to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share