Cyber Resilience

CVE-2023-29343

High

Published: 09 May 2023

Published
09 May 2023
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.2036 95.7th percentile
Risk Priority 28 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-29343 is a high-severity Link Following (CWE-59) vulnerability in Microsoft Windows Sysmon. Its CVSS base score is 7.8 (High).

Operationally, ranked in the top 4.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

Deeper analysis

CVE-2023-29343 is an elevation of privilege vulnerability affecting SysInternals Sysmon for Windows. The flaw is tracked under CWE-59 and carries a CVSS 3.1 base score of 7.8 reflecting local attack vector, low attack complexity, and low privileges required.

A local authenticated attacker can exploit the issue without user interaction to obtain elevated privileges, resulting in high impact to confidentiality, integrity, and availability on the target system.

Microsoft has published an advisory describing the vulnerability and associated updates at the referenced MSRC URL.

The EPSS score remains at 0.2036 with no material rise from its recorded peak.

EU & UK References

Vulnerability details

SysInternals Sysmon for Windows Elevation of Privilege Vulnerability

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

microsoft
windows sysmon
≤ 14.16

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References