CVE-2023-35386 | Severity.io

Description

Windows Kernel Elevation of Privilege Vulnerability

Related CPE's

windows_10_1507

Vulnerable

windows_10_1607

Vulnerable

windows_10_1809

Vulnerable

windows_10_21h2

Vulnerable

windows_10_22h2

Vulnerable

windows_11_21h2

Vulnerable

windows_11_22h2

Vulnerable

windows_server_2012

Vulnerable

windows_server_2016

Vulnerable

windows_server_2019

Vulnerable

windows_server_2022

Vulnerable

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35386

PatchVendor Advisory

http://packetstormsecurity.com/files/174567/Microsoft-Windows-Kernel-Integer-Overflow-Out-Of-Bounds-Read.html

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35386

PatchVendor Advisory

Weaknesses

[email protected]

Secondary

CWE-125

[email protected]

Primary

NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

CVSS V3.1
CVSS V3.0
CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-08-08T18:15:13.343

1 year ago

Last modified

2025-01-01T02:16:02.157

6 months ago