CVE-2023-38154

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 8, 2023
Updated: Jan 1, 2025
CWE ID 122

Summary

CVE-2023-38154 is a newly disclosed Windows Kernel vulnerability that grants attackers elevated privileges. By exploiting this EoP (Elevation of Privilege) flaw, an attacker can gain administrative access to an affected system, potentially leading to severe data breaches or system compromises. This vulnerability exists within the Windows kernel, making it a critical threat for organizations and individuals using Microsoft Windows operating systems. It is essential to apply the available patches promptly to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows 10 1809
  • Microsoft Windows Server 2019
  • Microsoft Windows 10

Affected Vendors

  • Microsoft