CVE-2023-29336

Published May 9, 2023

Last updated a month ago

Overview

AI description

Automated description summarized from trusted sources.

CVE-2023-29336 is an elevation of privilege vulnerability affecting the Win32k component in various Windows 10 and Windows Server versions. An attacker who successfully exploits this vulnerability could gain SYSTEM privileges. The vulnerability is listed in CISA's Known Exploited Vulnerabilities Catalog, indicating it has been actively exploited. It was added to the catalog on May 9, 2023, with a due date for action of May 30, 2023, meaning users were urged to promptly update their systems.

Description: Win32k Elevation of Privilege Vulnerability
Source: secure@microsoft.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Secondary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Known exploits

Data from CISA

Vulnerability name: Microsoft Win32K Privilege Escalation Vulnerability
Exploit added on: May 9, 2023
Exploit action due: May 30, 2023
Required action: Apply updates per vendor instructions.

Weaknesses

secure@microsoft.com: CWE-416
nvd@nist.gov: CWE-416

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score: 18

Win32k that we lost. In details writeup about CVE-2023-29336 (written by Sergey Tarasov @immortalp0ny) : https://t.co/ZXyqYy8Ord #win32k #vulnerability #exploitation #exploit #informationsecurity https://t.co/u4SjyOgYGF
@ale_sp_brazil
10 Jul 2025
6541 Impressions
41 Retweets
144 Likes
58 Bookmarks
4 Replies
0 Quotes

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0855C3A7-36C3-4398-9208-1FC8A02F40D0",
            "versionEndExcluding": "10.0.10240.19926"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BAB00F09-4CCF-4AB6-85CE-07298A21C1D9",
            "versionEndExcluding": "10.0.14393.5921"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F422A8C-2C4E-42C8-B420-E0728037E15C"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2ACA9287-B475-4AF7-A4DA-A7143CEF9E57"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.