CVE-2023-36717

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Oct 10, 2023
Updated: Oct 13, 2023

Summary

CVE-2023-36717 is a newly disclosed vulnerability affecting Windows Virtual Trusted Platform Module (vtTPM). This issue permits a denial-of-service (DoS) attack, allowing an attacker to cause the vtTPM service to crash or become unresponsive. The vulnerability potentially impacts systems that rely on vtTPM for secure boot and other protective measures. A successful attack could disrupt normal operations and leave the system vulnerable to further exploitation. Organizations using Windows with vtTPM are advised to install the available Microsoft security update to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share