CVE-2023-33127

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Jul 11, 2023
Updated: May 29, 2024
CWE ID 1220

Summary

CVE-2023-33127 is an elevation of privilege vulnerability affecting both .NET and Visual Studio applications. Maliciously crafted files can exploit this issue, allowing attackers to gain elevated privileges on the targeted system. Successful exploitation could lead to significant security consequences, including data theft, unauthorized system access, or even complete system takeover. This vulnerability highlights the importance of keeping software up-to-date to mitigate potential threats. Microsoft has released patches to address this issue, and it is recommended that all users apply these patches as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft .NET Framework
  • Microsoft Visual Studio 2022

Affected Vendors

  • Microsoft