CVE-2023-35337 — HIGH (7.8)

Q: What is CVE-2023-35337?

CVE-2023-35337 is a vulnerability with a CVSS score of 7.8 (HIGH). Win32k Elevation of Privilege Vulnerability

Q: How severe is CVE-2023-35337?

CVE-2023-35337 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-35337?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 10 21H2, Microsoft Windows 10 22H2, Microsoft Windows 11 21H2, Microsoft Windows 11 22H2, Microsoft Windows Server 2022.

Vulnerability Description

Win32k Elevation of Privilege Vulnerability

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Microsoft	Windows 10 21H2	< 10.0.19041.3208
Microsoft	Windows 10 22H2	< 10.0.19045.3208
Microsoft	Windows 11 21H2	< 10.0.22000.2176
Microsoft	Windows 11 22H2	< 10.0.22621.1992
Microsoft	Windows Server 2022	-

Related Weaknesses (CWE)

CWE-122

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35337PatchVendor Advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35337PatchVendor Advisory

FAQ

What is CVE-2023-35337?

CVE-2023-35337 is a vulnerability with a CVSS score of 7.8 (HIGH). Win32k Elevation of Privilege Vulnerability

How severe is CVE-2023-35337?

CVE-2023-35337 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-35337?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 10 21H2, Microsoft Windows 10 22H2, Microsoft Windows 11 21H2, Microsoft Windows 11 22H2, Microsoft Windows Server 2022.