Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2023-35353: Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft Windows: CVE-2023-35353: Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
07/11/2023
Created
07/12/2023
Added
07/11/2023
Modified
06/10/2024

Description

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

Solution(s)

  • microsoft-windows-windows_10-1607-kb5028169
  • microsoft-windows-windows_10-1809-kb5028168
  • microsoft-windows-windows_10-21h2-kb5028166
  • microsoft-windows-windows_10-22h2-kb5028166
  • microsoft-windows-windows_11-21h2-kb5028182
  • microsoft-windows-windows_11-22h2-kb5028185
  • msft-kb5028168-d6c3908e-fb9f-4d86-a049-33a2cff6b97a
  • msft-kb5028169-9db95304-8fab-4e60-bd3a-fa5b5a2508f3
  • msft-kb5028171-a0d22f4d-9ebd-414b-91e4-d93fd8d901c7
  • msft-kb5028171-b79d4ccb-33f7-4e5d-8b14-76dba94a1d6c

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;