CVSS Score of 10 (low)


Published Oct 10, 2023
Updated: May 29, 2024
CWE ID 908


CVE-2023-36704, also known as the Windows Setup Files Cleanup Remote Code Execution Vulnerability, poses a high risk with a CVSS score of 7.8. This vulnerability affects a wide range of products, including various versions of pCBSQ, pCBSS, pCBST, and pCBSU. The vulnerability is categorized as CWE-908 (Use of Uninitialized Resource). It requires local access to exploit and user interaction is required. The potential danger it poses to an organization is high as it can lead to the execution of arbitrary code with high integrity and confidentiality impact. Remediation measures have not been provided in the available information.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-36704 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options