| Assigner | microsoft |
| Reserved | 2023-06-21 |
| Published | 2023-11-14 |
| Updated | 2024-06-10 |
Description
Windows User Interface Application Core Remote Code Execution Vulnerability
| HIGH: 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C |
Problem types
CWE-426: Untrusted Search Path
Product status
10.0.0 before 10.0.17763.5122
affected
10.0.0 before 10.0.17763.5122
affected
10.0.0 before 10.0.17763.5122
affected
10.0.0 before 10.0.20348.2113
affected
10.0.0 before 10.0.20348.2091
affected
10.0.0 before 10.0.22000.2600
affected
10.0.0 before 10.0.19043.3693
affected
10.0.0 before 10.0.22621.2715
affected
10.0.0 before 10.0.19045.3693
affected
10.0.0 before 10.0.22631.2715
affected
10.0.0 before 10.0.22631.2715
affected
10.0.0 before 10.0.25398.531
affected
10.0.0 before 10.0.10240.20308
affected
10.0.0 before 10.0.14393.6452
affected
10.0.0 before 10.0.14393.6452
affected
10.0.0 before 10.0.14393.6452
affected
6.0.0 before 6.0.6003.22367
affected
6.0.0 before 6.0.6003.22367
affected
6.0.0 before 6.0.6003.22367
affected
6.1.0 before 6.1.7601.26816
affected
6.0.0 before 6.1.7601.26816
affected
6.2.0 before 6.2.9200.24569
affected
6.2.0 before 6.2.9200.24569
affected
6.3.0 before 6.3.9600.21668
affected
6.3.0 before 6.3.9600.21668
affected
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36393 (Windows User Interface Application Core Remote Code Execution Vulnerability) vendor-advisory
cve.org CVE-2023-36393
nvd.nist.gov CVE-2023-36393
Download JSON
