CVE-2023-36717
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Summary
CVE-2023-36717 is a newly disclosed vulnerability affecting Windows Virtual Trusted Platform Module (vtTPM). This issue permits a denial-of-service (DoS) attack, allowing an attacker to cause the vtTPM service to crash or become unresponsive. The vulnerability potentially impacts systems that rely on vtTPM for secure boot and other protective measures. A successful attack could disrupt normal operations and leave the system vulnerable to further exploitation. Organizations using Windows with vtTPM are advised to install the available Microsoft security update to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.