CVE-2023-35633
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2023-35633 is a newly disclosed Windows Kernel vulnerability that allows an attacker to gain elevated privileges. By exploiting this EoP (Elevation of Privilege) vulnerability, an attacker can escalate their access from user level to system level, potentially gaining control over the affected system. This could lead to data theft, unauthorized system changes, or even the installation of malware. Microsoft has released a security update to address this issue, and it is recommended that all Windows users install the patch as soon as possible to protect their systems.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Microsoft Windows 10 1507
- Microsoft Windows Server 2008
- Microsoft Windows Server 2012
- Microsoft Windows Server 2012 R2
Affected Vendors
- Microsoft