CVE-2023-38144

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 12, 2023

Updated: May 29, 2024

CWE ID 126

Summary

CVE-2023-38144 is a recently disclosed vulnerability affecting the Windows Common Log File System (LFS) driver. This issue grants attackers the ability to elevate their privileges, allowing them to gain higher access levels on affected systems. Successful exploitation could result in the execution of arbitrary code, potentially leading to significant security risks. The vulnerability occurs due to an improperly implemented function in the LFS driver, making it essential for Microsoft to release a patch as soon as possible to mitigate these risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r-Ocj_
https://www.cve.org/CVERecord?id=CVE-2023-38144
https://nvd.nist.gov/vuln/detail/CVE-2023-38144

Back to Vulnerability Database

CVE-2023-38144

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations