CVE-2023-32046

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 11, 2023
Updated: Jan 1, 2025

Summary

CVE-2023-32046 is a newly disclosed vulnerability affecting the Microsoft MSHTML platform used in Windows. This elevation of privilege issue allows an attacker to gain higher system privileges by deceiving a user into opening a specially crafted malicious email attachment or visiting a malicious website. Successful exploitation could result in the attacker gaining full control of the affected system, potentially leading to data theft or unauthorized system changes. Microsoft has released a security update to address this vulnerability, and users are strongly advised to install it as soon as possible to protect against potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share