CVE-2023-33127
CVSS 3.1 Score 8.1 of 10 (high)
Details
Summary
CVE-2023-33127 is an elevation of privilege vulnerability affecting both .NET and Visual Studio applications. Maliciously crafted files can exploit this issue, allowing attackers to gain elevated privileges on the targeted system. Successful exploitation could lead to significant security consequences, including data theft, unauthorized system access, or even complete system takeover. This vulnerability highlights the importance of keeping software up-to-date to mitigate potential threats. Microsoft has released patches to address this issue, and it is recommended that all users apply these patches as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Microsoft .NET Framework
- Microsoft Visual Studio 2022
Affected Vendors
- Microsoft