7.8
CVE-2023-32046
- EPSS 80.28%
- Published 11.07.2023 18:15:13
- Last modified 10.03.2025 20:45:52
- Source secure@microsoft.com
- Teams watchlist Login
- Open Login
Windows MSHTML Platform Elevation of Privilege Vulnerability
Data is provided by the National Vulnerability Database (NVD)
Microsoft ≫ Windows 10 1507 Version < 10.0.10240.20048
Microsoft ≫ Windows 10 1607 Version < 10.0.14393.6085
Microsoft ≫ Windows 10 1809 Version < 10.0.17763.4645
Microsoft ≫ Windows 10 21h2 Version < 10.0.19041.3208
Microsoft ≫ Windows 10 22h2 Version < 10.0.19045.3208
Microsoft ≫ Windows 11 21h2 Version < 10.0.22000.2176
Microsoft ≫ Windows 11 22h2 Version < 10.0.22621.1992
Microsoft ≫ Windows Server 2008 Version- Updatesp2
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2016 Version-
Microsoft ≫ Windows Server 2019 Version-
Microsoft ≫ Windows Server 2022 Version-
11.07.2023: CISA Known Exploited Vulnerabilities (KEV) Catalog
Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability
VulnerabilityMicrosoft Windows MSHTML Platform contains an unspecified vulnerability that allows for privilege escalation.
DescriptionApply updates per vendor instructions or discontinue use of the product if updates are unavailable.
Required actions| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 80.28% | 0.991 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| secure@microsoft.com | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|