CVE-2023-29336
Microsoft Win32K Privilege Escalation Vulnerability
CVSS
—
No CVSS
EPSS
40.9%
p99
KEV
YES
May 9, 2023
Exploit Today
80
0-100
Published: — · Last modified: —
40.9%EPSS · 30 days40.9%
2026-06-302026-07-16
Product
Microsoft / Win32k
Vulnerability
Microsoft Win32K Privilege Escalation Vulnerability
Added to KEV
May 9, 2023
Remediate by
May 30, 2023
Known ransomware use
No
Summary description
Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation up to SYSTEM privileges.
Required action
Apply updates per vendor instructions.
Notes
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-29336; https://nvd.nist.gov/vuln/detail/CVE-2023-29336
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2014-4113—99.7%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2016-7255—99.6%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2021-1732—99.5%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2019-1458—99.4%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2018-8120—99.4%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2018-8453—99.3%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—