CVSS 3.1 Score 8.4 of 10 (high)


Published Sep 5, 2023
Updated: Apr 12, 2024
CWE ID 121
CWE ID 787


CVE-2023-28538 is a cyber vulnerability that affects WIN Product, specifically during the invocation of the WinAcpi update driver in the UEFI region. The risk score for this vulnerability is 25, indicating a high level of severity. The base score is 8.4, with a base severity of HIGH. The exploitability score is 2.5, and the attack vector is classified as LOCAL. The potential impact includes high integrity and confidentiality impacts, with an availability impact also being high. Remediation steps for this vulnerability have not been provided in the available information.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-28538 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options