CVE-2023-29343
Published: 09 May 2023
Summary
CVE-2023-29343 is a high-severity Link Following (CWE-59) vulnerability in Microsoft Windows Sysmon. Its CVSS base score is 7.8 (High).
Operationally, ranked in the top 4.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Deeper analysis
CVE-2023-29343 is an elevation of privilege vulnerability affecting SysInternals Sysmon for Windows. The flaw is tracked under CWE-59 and carries a CVSS 3.1 base score of 7.8 reflecting local attack vector, low attack complexity, and low privileges required.
A local authenticated attacker can exploit the issue without user interaction to obtain elevated privileges, resulting in high impact to confidentiality, integrity, and availability on the target system.
Microsoft has published an advisory describing the vulnerability and associated updates at the referenced MSRC URL.
The EPSS score remains at 0.2036 with no material rise from its recorded peak.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-32916
Vulnerability details
SysInternals Sysmon for Windows Elevation of Privilege Vulnerability
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.