CVE-2023-36033

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 14, 2023
Updated: Aug 14, 2024
CWE ID 822
CWE ID 119

Summary

CVE-2023-36033 is an elevation of privilege vulnerability affecting the Windows DWM (Desktop Window Manager) Core Library. An attacker who successfully exploits this vulnerability can gain higher privileges on an affected system, potentially leading to unauthorized access or system takeover. The vulnerability can be triggered through a specially crafted Windows Graphics Driver, making it crucial for graphics driver updates to address this issue. Users and administrators are advised to install patches as soon as they become available to mitigate the risk of exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share