Elevation of Privilege Vulnerability Affects Microsoft Streaming Service
CVE-2023-36802
Key Information:
- Vendor
- Microsoft
- Status
- Vendor
- CVE Published:
- 12 September 2023
Badges
Summary
Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability
CISA Reported
CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace as recent news articles suggest the vulnerability is being used by ransomware groups.
The CISA's recommendation is: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Affected Version(s)
Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.4851
Windows 10 Version 1809 ARM64-based Systems 10.0.0 < 10.0.17763.4851
Windows 10 Version 21H2 32-bit Systems 10.0.19043.0 < 10.0.19044.3448
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
News Articles
CybersecurityNewsCVE-2023-36802Beware of Stealthy Raspberry Robin That Delivered as a Windows Component
Raspberry Robin is a malicious worm that spreads through USB drives, and it's been actively used by the threat actors.
11 months ago
Security IntelligenceCritically close to zero (day): Exploiting Microsoft Kernel streaming service
Microsoft recently found and patched a vulnerability in the Microsoft Kernel streaming service. Learn more here.
1 year ago
References
EPSS Score
4% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
- π°
Used in Ransomware
- π‘
Public PoC available
- πΎ
Exploit known to exist
- π¦
CISA Reported
- π°
First article discovered by Help Net Security
Vulnerability published
Vulnerability Reserved