CVE-2023-35342

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 11, 2023

Updated: May 29, 2024

CWE ID 59

Summary

CVE-2023-35342 is a newly disclosed vulnerability affecting the Windows Image Acquisition (WIA) service. This elevation of privilege issue grants attackers local system rights when a specially crafted image file is processed by the WIA service. Exploitation of this vulnerability could lead to the installation of unauthorized software, unauthorized access to data, or other malicious activities. It is recommended that affected systems be patched as soon as possible to mitigate this risk. The vulnerability has been assigned a CVSS score of 9.8, indicating a critical severity level.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzlEwV
https://www.cve.org/CVERecord?id=CVE-2023-35342
https://nvd.nist.gov/vuln/detail/CVE-2023-35342

Back to Vulnerability Database

CVE-2023-35342

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations