← back
CVE-2023-52271

CVE-2023-52271

CVSS 6.5 MEDIUMEPSS 0.3%◆ VulnCheck KEV
Vexday Risk Score
55Attention
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
Exploit maturity
Proof of concept
Public proof of concept exists, but not yet automated.
CVSS 6.5EPSS 0.3%KEV nãoPoC públicaNuclei Metasploit Patch
Lifecycle
08 Jan 2024Published on NVD
21 Jan 2026Public PoC
Weaponization speed
744 daysto first PoC
Recommendation: Patch as soon as possible — active exploitation confirmed.
The wsftprm.sys kernel driver 2.0.0.0 in Topaz Antifraud allows low-privileged attackers to kill any (Protected Process Light) process via an IOCTL (which will be named at a later time).
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.