CVE-2023-35342
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2023-35342 is a newly disclosed vulnerability affecting the Windows Image Acquisition (WIA) service. This elevation of privilege issue grants attackers local system rights when a specially crafted image file is processed by the WIA service. Exploitation of this vulnerability could lead to the installation of unauthorized software, unauthorized access to data, or other malicious activities. It is recommended that affected systems be patched as soon as possible to mitigate this risk. The vulnerability has been assigned a CVSS score of 9.8, indicating a critical severity level.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions