CVE-2023-35355

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 12, 2023

Updated: May 29, 2024

CWE ID 121

Summary

CVE-2023-35355 is an elevation of privilege vulnerability affecting the Windows Cloud Files Mini Filter Driver. An attacker who successfully exploits this weakness can gain higher system privileges, potentially leading to significant security compromises. The Mini Filter Driver, designed to enable real-time filtering of data, is the target, with the exact cause of the vulnerability being improper handling of user input. This issue can be mitigated by applying the latest Microsoft security updates or using alternative filtering methods.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzlEwv
https://www.cve.org/CVERecord?id=CVE-2023-35355
https://nvd.nist.gov/vuln/detail/CVE-2023-35355

Back to Vulnerability Database

CVE-2023-35355

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations