CVE-2023-36802
Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability
Vexday Risk Score
76High priority
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
CVSS 7.8EPSS 26.1%KEV simPoC públicaPatch referenciado
Lifecycle
12 Sep 2023Active exploitation (CISA KEV)
12 Sep 2023Published on NVD
09 Oct 2023Public PoC
Recommendation: Patch as soon as possible — active exploitation confirmed.
In short
A flaw in Microsoft Streaming Service Proxy allows an attacker with local access to run code with higher privileges than their account normally allows. This is dangerous because it could let someone take complete control of the system.
Technical detail
Use-after-free vulnerability (CWE-416) in Microsoft Streaming Service Proxy enables local privilege escalation when an attacker exploits memory access patterns after object deallocation. Requires local access to the affected system; successful exploitation grants attacker elevated privileges comparable to system-level execution.
Summary generated and translated by AI from the official description.
Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Affected products
Microsoft · Windows 10 Version 1809Microsoft · Windows 10 Version 21H2Microsoft · Windows 10 Version 22H2Microsoft · Windows 11 version 21H2Microsoft · Windows 11 version 22H2Microsoft · Windows Server 2019Microsoft · Windows Server 2019 (Server Core installation)Microsoft · Windows Server 2022public PoCs found — 5
githubgithub.com/chompie1337/Windows_MSKSSRV_LPE_CVE-2023-36802★ 164githubgithub.com/Nero22k/cve-2023-36802★ 112githubgithub.com/x0rb3l/CVE-2023-36802-MSKSSRV-LPE★ 36githubgithub.com/4zur-0312/CVE-2023-36802★ 14githubgithub.com/rahul0xkr/Reproducing-CVE-2023-36802★ 0⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →