cbcvebase.
CVE-2023-33873
published 2023-11-15

CVE-2023-33873: This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user with standard privileges to escalate to System privilege on…

PriorityP340high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.24%
14.5th percentile
This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user with standard privileges to escalate to System privilege on the machine where these products are installed, resulting in complete compromise of the target machine.

Affected

35 ranges· showing 25
VendorProductVersion rangeFixed in
avevaapplication_server<= 2020 R2 SP1 P01
avevabatch_management< 20202020
avevabatch_management<= 2020 SP1
avevabatch_management
avevacommunication_drivers< 20202020
avevacommunication_drivers
avevacommunication_drivers_pack<= 2020 R2 SP1
avevaedge<= 20.1.101
avevaenterprise_licensing<= 3.7.002
avevahistorian< 20202020
avevahistorian<= 2020 R2 SP1 P01
avevahistorian
avevaintouch< 20202020
avevaintouch<= 2020 R2 SP1 P01
avevaintouch
avevamanufacturing_execution_system< 20202020
avevamanufacturing_execution_system<= 2020 P01
avevamanufacturing_execution_system
avevamobile_operator< 20202020
avevamobile_operator<= 2020 R1
avevamobile_operator
avevaplant_scada< 20202020
avevaplant_scada<= 2020 R2 Update 15
avevaplant_scada
avevarecipe_management< 20202020
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.