CVE-2023-36033 - Microsoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability
Project:Microsoft
Product:Windows
Date Added:2023-11-14Due Date:2023-12-05
Vulnerability Name
Microsoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability
Description
Microsoft Windows Desktop Window Manager (DWM) Core Library contains an unspecified vulnerability that allows for privilege escalation.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Additional Notes
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-36033
https://nvd.nist.gov/vuln/detail/CVE-2023-36033
Related News Articles
Microsoft fixes Windows zero-day exploited in QakBot malware attacksMay 15, 2024
