CVE-2023-36805

CVSS 3.1 Score 7.0 of 10 (high)

Details

Published Sep 12, 2023
Updated: May 29, 2024
CWE ID 77

Summary

CVE-2023-36805 is a newly disclosed vulnerability affecting the Microsoft MSHTML platform used in Windows. This security flaw allows an attacker to bypass security features, potentially leading to the execution of malicious code. The vulnerability can be exploited through specially crafted web content, posing a significant risk to users who browse the web with an unpatched system. Microsoft has released a security update to address this issue, and it is strongly recommended that users install the patch as soon as possible to protect against potential attacks. Failure to do so may result in unauthorized access, data theft, or other malicious activities.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share