CVE-2023-36033 - Microsoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability

CVE-2023-36033: Microsoft | Windows

Date Added:
2023-11-14

Due Date:
2023-12-05

Vulnerability Name: Microsoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability

Description: Microsoft Windows Desktop Window Manager (DWM) Core Library contains an unspecified vulnerability that allows for privilege escalation.

Known To Be Used in Ransomware Campaigns?: Unknown

Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-36033 ; https://nvd.nist.gov/vuln/detail/CVE-2023-36033

Related News Articles: Microsoft fixes Windows zero-day exploited in QakBot malware attacksMay 15, 2024

Free security scan for your website

Don't show website scan report rating on the leaderboard