CVE-2023-28229
| CVE Published | 2023-04-11 |
|---|---|
| Related CWE(s) | CWE-591: Sensitive Data Storage in Improperly Locked Memory |
| Related Vendor(s) | microsoft |
| Related Product(s) | windows_10_1507, windows_server_2008, windows_10_21h2, windows_server_2012, windows_10_1809, windows_11_21h2, windows_10_1607, windows_server_2022, windows_11_22h2, windows_server_2019, windows_server_2016, windows_10_20h2, windows_10_22h2 |
| Exploitation Reported (CISA KEV) | 2023-10-04 |
| CVSS 3 Base Score | 7.0 (HIGH) |
| CVSS 3 Attack Complexity | HIGH |
| CVSS 3 Attack Vector | LOCAL |
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph