CVE-2023-21752

high-risk

Published 2023-01-10

Windows Backup Service Elevation of Privilege Vulnerability

Do I need to act?

!

52.0% chance of exploitation in next 30 days

EPSS score — higher than 48% of all CVEs

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

!

1 public exploit available

51203

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

7

CVSS 7.1/10 High

LOCAL / LOW complexity

Affected Products (13)

Windows 10

Windows 10

Windows 10

Windows 10

Windows 10

Windows 10

Windows 11

Windows 11

Windows 11

Windows 11

Windows 11

Windows 11

Windows 7

Affected Vendors

Microsoft

References (2)

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21752

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21752

57

/ 100

high-risk

Severity 22/34 · High

Exploitability 18/34 · Moderate

Exposure 17/34 · Moderate