CVSS Score of 10 (low)


Published Oct 10, 2023
Updated: May 29, 2024
CWE ID 362
CWE ID 416


CVE-2023-36776, also known as the Win32k Elevation of Privilege Vulnerability, is a high-risk vulnerability that affects multiple products. The affected products include various versions of pE-qz, cyH3oJ, slna2s, Qtri32, Qtri33, Qtri3K, pE-qy2, pE-qy3, and many more. The vulnerability allows an attacker with low privileges to execute arbitrary code with elevated privileges. To remediate this vulnerability, it is recommended to apply the necessary security patches and updates provided by the affected product vendors. This vulnerability poses a significant danger to organizations as it can potentially lead to unauthorized access and control over affected systems, leading to the compromise of sensitive data or further attacks on the network infrastructure.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-36776 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options