CVE-2023-36422
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2023-36422 is a recently disclosed vulnerability affecting Microsoft Windows Defender. This elevation of privilege issue allows unprivileged users to gain higher system privileges by exploiting a weakness in Windows Defender's design. Successful exploitation could potentially lead to significant security impacts, including the ability to install unauthorized software, modify system settings, or access sensitive data. Microsoft has released a patch to address this vulnerability, and it's strongly recommended that Windows users install the update as soon as possible to mitigate the risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Microsoft Windows Defender
Affected Vendors
- Microsoft