CVE-2023-21725 — Vulnetix

CVE-2023-21725 PUBLISHED

Es existiert eine Schwachstelle in Microsoft System Center. Der Fehler besteht im Malicious Software Removal Tool. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Berechtigungen zu erweitern.

EPSS 0.24% · 47.9th percentile

Risk Scores

EPSS Score

0.24%

47.9th percentile

Affected Products

Vendor	Product	Versions
Microsoft	Microsoft Malicious Software Removal Tool Windows 32-bit
Microsoft	Microsoft Malicious Software Removal Tool Windows 64-bit

Exploit Intelligence

https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)

Timeline

Jan 10, 2023 CVE Published
Jan 11, 2023 EPSS Score
Feb 21, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 14, 2023 EPSS Score
Jun 23, 2023 EPSS Score
Aug 3, 2023 EPSS Score
Sep 13, 2023 EPSS Score
Oct 24, 2023 EPSS Score
Dec 4, 2023 EPSS Score
Jan 14, 2024 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0056.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0056 advisory
https://msrc.microsoft.com/update-guide advisory

Open in Interactive Console →