CVE-2023-36003

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Dec 12, 2023
Updated: May 29, 2024
CWE ID 426

Summary

CVE-2023-36003 is an elevation of privilege vulnerability affecting XAML Diagnostics in Microsoft .NET Desktop Applications. Attackers can exploit this issue by manipulating specially crafted XAML files, leading to the execution of arbitrary code with elevated privileges. Successful exploitation could result in unauthorized system access or data theft. Users are advised to apply the available patches as soon as possible to mitigate this risk. Microsoft has released updates to address the vulnerability, and it is recommended that all .NET Desktop Application users install these patches promptly to protect their systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share