CVE-2023-21674
CVSS v3.1
8.8 (High)
EPSS
0.14 % (50th)
Affected Products
13
Advisories
2
NVD Status
Analyzed
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
Weaknesses
- CWE-416
- Use After Free
- CVE Status
- PUBLISHED
- NVD Status
- Analyzed
- CNA
- Microsoft Corporation
- Published Date
-
2023-01-10 22:15:16
(20 months ago) - Updated Date
-
2024-06-28 13:45:47
(2 months ago)
Microsoft Windows Advanced Local Procedure Call (ALPC) Privilege Escalation Vulnerability (CISA - Known Exploited Vulnerabilities Catalog)
- Description
- Microsoft Windows Advanced Local Procedure Call (ALPC) contains an unspecified vulnerability that allows for privilege escalation.
- Required Action
- Apply updates per vendor instructions.
- Known to be Used in Ransomware Campaigns
- Unknown
- Notes
- https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21674; https://nvd.nist.gov/vuln/detail/CVE-2023-21674
- Vendor
- Microsoft
- Product
- Windows
- In CISA Catalog from
-
2023-01-10
(20 months ago) - Due Date
-
2023-01-31
(19 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...