CVE-2023-36805
published 2023-09-12CVE-2023-36805: Windows MSHTML Platform Security Feature Bypass Vulnerability
PriorityP434high7CVSS 3.1
AVLACHPRNUIRSUCHIHAH
EPSS
2.25%
80.6th percentile
Windows MSHTML Platform Security Feature Bypass Vulnerability
Affected
38 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_10_1507 | < 10.0.10240.20162 | 10.0.10240.20162 |
| microsoft | windows_10_1607 | < 10.0.14393.6252 | 10.0.14393.6252 |
| microsoft | windows_10_1809 | < 10.0.17763.4851 | 10.0.17763.4851 |
| microsoft | windows_10_21h2 | < 10.0.19044.3448 | 10.0.19044.3448 |
| microsoft | windows_10_22h2 | < 10.0.19045.3448 | 10.0.19045.3448 |
| microsoft | windows_10_version_1507 | >= 10.0.10240.0 < 10.0.10240.20162 | 10.0.10240.20162 |
| microsoft | windows_10_version_1607 | >= 10.0.14393.0 < 10.0.14393.6252 | 10.0.14393.6252 |
| microsoft | windows_10_version_1809 | >= 10.0.0 < 10.0.17763.4851 | 10.0.17763.4851 |
| microsoft | windows_10_version_1809 | >= 10.0.17763.0 < 10.0.17763.4851 | 10.0.17763.4851 |
| microsoft | windows_10_version_21h2 | >= 10.0.19043.0 < 10.0.19044.3448 | 10.0.19044.3448 |
| microsoft | windows_10_version_22h2 | >= 10.0.19045.0 < 10.0.19045.3448 | 10.0.19045.3448 |
| microsoft | windows_11_21h2 | < 10.0.22000.2416 | 10.0.22000.2416 |
| microsoft | windows_11_22h2 | < 10.0.22621.2275 | 10.0.22621.2275 |
| microsoft | windows_11_version_21h2 | >= 10.0.0 < 10.0.22000.2416 | 10.0.22000.2416 |
| microsoft | windows_11_version_22h2 | >= 10.0.22621.0 < 10.0.22621.2283 | 10.0.22621.2283 |
| microsoft | windows_server_2008_r2_service_pack_1 | >= 6.1.7601.0 < 6.1.7601.26713 | 6.1.7601.26713 |
| microsoft | windows_server_2012 | — | — |
| microsoft | windows_server_2012 | >= 6.2.9200.0 < 6.2.9200.24462 | 6.2.9200.24462 |
| microsoft | windows_server_2012_r2 | >= 6.3.9600.0 < 6.3.9600.21563 | 6.3.9600.21563 |
| microsoft | windows_server_2016 | < 10.0.14393.6252 | 10.0.14393.6252 |
| microsoft | windows_server_2016 | >= 10.0.14393.0 < 10.0.14393.6252 | 10.0.14393.6252 |
| microsoft | windows_server_2019 | < 10.0.17763.4851 | 10.0.17763.4851 |
| microsoft | windows_server_2019 | >= 10.0.17763.0 < 10.0.17763.4851 | 10.0.17763.4851 |
| microsoft | windows_server_2022 | < 10.0.20348.1970 | 10.0.20348.1970 |
| microsoft | windows_server_2022 | >= 10.0.20348.0 < 10.0.20348.1970 | 10.0.20348.1970 |
CVSS provenance
nvdv3.17.0HIGHCVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
vendor_msrc7.0HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Microsoft
Windows MSHTML Platform Security Feature Bypass Vulnerability
vendor_msrc·2023-09-12·CVSS 7.0
CVE-2023-36805 [HIGH] CWE-77 Windows MSHTML Platform Security Feature Bypass Vulnerability
Windows MSHTML Platform Security Feature Bypass Vulnerability
FAQ: According to the CVSS metric, the attack vector is local (AV:L). Why does the CVE title indicate that this is a remote code execution?
The word Remote in the title refers to the location of the attacker. This type of exploit is sometimes referred to as Arbitrary Code Execution (ACE). The attack itself is carried out locally.
For example, when the score indicates that the Attack Vector is Local and User Interaction is Required, this could describe an exploit in which an attacker, through social engineering, convinces a victim to download and open a specially crafted file from a website which leads to a local attack on their computer.
FAQ: According to the CVSS metrics, successful exploitation of this vulnerability could le
GHSA
GHSA-7f59-f34w-2933: Windows MSHTML Platform Security Feature Bypass Vulnerability
ghsa_unreviewed·2023-09-12
CVE-2023-36805 [HIGH] GHSA-7f59-f34w-2933: Windows MSHTML Platform Security Feature Bypass Vulnerability
Windows MSHTML Platform Security Feature Bypass Vulnerability
No detection rules found.
No public exploits indexed.
Tenable
Microsoft’s May 2024 Patch Tuesday Addresses 59 CVEs (CVE-2024-30051, CVE-2024-30040)
blogs_tenable·2024-05-14·CVSS 8.8
[HIGH] Microsoft’s May 2024 Patch Tuesday Addresses 59 CVEs (CVE-2024-30051, CVE-2024-30040)
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Bleepingcomputer
Microsoft September 2023 Patch Tuesday fixes 2 zero-days, 59 flaws
blogs_bleepingcomputer·2023-09-12·CVSS 6.5
[MEDIUM] Microsoft September 2023 Patch Tuesday fixes 2 zero-days, 59 flaws
## Microsoft September 2023 Patch Tuesday fixes 2 zero-days, 59 flaws
## Lawrence Abrams
3 Security Feature Bypass Vulnerabilities
24 Remote Code Execution Vulnerabilities
9 Information Disclosure Vulnerabilities
3 Denial of Service Vulnerabilities
5 Spoofing Vulnerabilities
5 Edge - Chromium Vulnerabilities
The total count of 59 flaws does not include five Microsoft Edge (Chromium) vulnerabilities two non-Microsoft flaws in Electron and Autodesk.
To learn more about the non-security updates released today, you can review our dedicated articles on the new Windows 11 KB5030219 cumulative update and Windows 10 KB5030211 updates released.
## Two actively exploited zero-day vulnerabilities
This month's Patch Tuesday fixes two zero-day vulnerabilities, with both exploited in attacks
2023-09-12
Published