Nov 2023: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2023-36036 Published on November 14, 2023
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Known Exploited Vulnerability
This Microsoft Windows Cloud Files Mini Filter Driver Privilege Escalation Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Microsoft Windows Cloud Files Mini Filter Driver contains a privilege escalation vulnerability that could allow an attacker to gain SYSTEM privileges.
The following remediation steps are recommended / required by December 5, 2023: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Weakness Type
Heap-based Buffer Overflow
A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().
Products Associated with CVE-2023-36036
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-36036 are published in these products:
Affected Versions
Microsoft Windows 10 Version 1809:- Version 10.0.17763.0 and below 10.0.17763.5122 is affected.
- Version 10.0.0 and below 10.0.17763.5122 is affected.
- Version 10.0.17763.0 and below 10.0.17763.5122 is affected.
- Version 10.0.17763.0 and below 10.0.17763.5122 is affected.
- Version 10.0.20348.0 and below 10.0.20348.2113 is affected.
- Version 10.0.0 and below 10.0.22000.2600 is affected.
- Version 10.0.19043.0 and below 10.0.19043.3693 is affected.
- Version 10.0.22621.0 and below 10.0.22621.2715 is affected.
- Version 10.0.19045.0 and below 10.0.19045.3693 is affected.
- Version 10.0.10240.0 and below 10.0.10240.20308 is affected.
- Version 10.0.14393.0 and below 10.0.14393.6452 is affected.
- Version 10.0.14393.0 and below 10.0.14393.6452 is affected.
- Version 10.0.14393.0 and below 10.0.14393.6452 is affected.
- Version 6.0.6003.0 and below 6.0.6003.22367 is affected.
- Version 6.0.6003.0 and below 6.0.6003.22367 is affected.
- Version 6.0.6003.0 and below 6.0.6003.22367 is affected.
- Version 6.1.7601.0 and below 6.1.7601.26816 is affected.
- Version 6.1.7601.0 and below 6.1.7601.26816 is affected.
- Version 6.2.9200.0 and below 6.2.9200.24569 is affected.
- Version 6.2.9200.0 and below 6.2.9200.24569 is affected.
- Version 6.3.9600.0 and below 6.3.9600.21668 is affected.
- Version 6.3.9600.0 and below 6.3.9600.21668 is affected.
- Version 10.0.22631.0 and below 10.0.22631.2715 is affected.
- Version 10.0.25398.0 and below 10.0.25398.531 is affected.
- Version 10.0.22631.0 and below 10.0.22631.2715 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.