PT-2023-6943 · Microsoft · Windows 11+5
Publicado
2023-11-14
·
Atualizado
2026-06-16
·
CVE-2023-36036
CVSS v3.1
7.8
Alta
| Vetor | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Microsoft Windows Cloud Files Mini Filter Driver (affected versions not specified)
Description
The issue is related to a buffer overflow in memory, allowing an attacker to elevate their privileges. This can affect the system, potentially leading to unauthorized access or control. A proof-of-concept (PoC) for this flaw is expected to be released. There have been reports of this vulnerability being exploited in the wild as a zero-day attack. A threat actor claims to be selling an exploit for this vulnerability, allegedly affecting Windows 10-11 and servers 2019-2022.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
DoS
LPE
Buffer Overflow
Memory Corruption
Heap Based Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Windows Cloud Files Mini Filter Driver
Windows
Windows 10
Windows 11
Windows Server 2019
Windows Server 2022