CVE-2023-36036
Windows Cloud Files Mini Filter Driver local privilege escalation vulnerability. It was used in the post-exploitation phase of stealers such as LummaStealer and Rhadamanthys.
Vulnerability Profile
CVSS Score
8.8 / 10.0
Severity
High
Exploitation Status
⚠ Active Exploitation
Patch Status
✓ Patch Available
Affected Software
Windows 10/11, Server 2016/2019/2022
Exploitation Method
LPE
MITRE ATT&CK
T1068 - Exploitation for Privilege Escalation
CVE-2023-36036 Windows Cloud Files Mini Filter Driver LPE. Aktif saldirilar gozlemlendi; LummaStealer kampanyalarinda erisim yukseltmek icin kullanilmistir.