CVE-2023-36027

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Nov 10, 2023
Updated: Nov 16, 2023

Summary

CVE-2023-36027 is an elevation of privilege vulnerability affecting Microsoft Edge browsers based on Chromium. Successful exploitation of this vulnerability allows an attacker to escalate their privileges, potentially gaining control over a victim's system. The precise nature of this vulnerability involves manipulating the web browser's process in a way that allows for the elevation of privileges. Microsoft has released a patch to address this issue, and users are strongly encouraged to install it as soon as possible to mitigate the risk. This vulnerability is significant as it could allow an attacker to escalate privileges in a targeted attack, potentially leading to data theft or system compromise.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Edge Chromium

Affected Vendors

  • Microsoft