Home

Description

Windows Sysmain Service Elevation of Privilege Vulnerability

PUBLISHED Reserved 2023-06-15 | Published 2023-12-12 | Updated 2025-01-01 | Assigner microsoft




HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Problem types

CWE-190: Integer Overflow or Wraparound

Product status

10.0.17763.0 (custom) before 10.0.17763.5206
affected

10.0.0 (custom) before 10.0.17763.5206
affected

10.0.17763.0 (custom) before 10.0.17763.5206
affected

10.0.17763.0 (custom) before 10.0.17763.5206
affected

10.0.20348.0 (custom) before 10.0.20348.2159
affected

10.0.0 (custom) before 10.0.22000.2652
affected

10.0.19043.0 (custom) before 10.0.19041.3803
affected

10.0.22621.0 (custom) before 10.0.22621.2861
affected

10.0.19045.0 (custom) before 10.0.19045.3803
affected

10.0.22631.0 (custom) before 10.0.22621.2861
affected

10.0.22631.0 (custom) before 10.0.22631.2861
affected

10.0.25398.0 (custom) before 10.0.25398.584
affected

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35644 (Windows Sysmain Service Elevation of Privilege) vendor-advisory

msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35644 (Windows Sysmain Service Elevation of Privilege Vulnerability) vendor-advisory

cve.org (CVE-2023-35644)

nvd.nist.gov (CVE-2023-35644)

Download JSON