CVE-2023-38143
published 2023-09-12CVE-2023-38143: Windows Common Log File System Driver Elevation of Privilege Vulnerability
PriorityP345high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
4.37%
90.0th percentile
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Affected
41 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_10_1507 | < 10.0.10240.20162 | 10.0.10240.20162 |
| microsoft | windows_10_1607 | < 10.0.14393.6252 | 10.0.14393.6252 |
| microsoft | windows_10_1809 | < 10.0.17763.4851 | 10.0.17763.4851 |
| microsoft | windows_10_21h2 | < 10.0.19044.3448 | 10.0.19044.3448 |
| microsoft | windows_10_22h2 | < 10.0.19045.3448 | 10.0.19045.3448 |
| microsoft | windows_10_version_1507 | >= 10.0.10240.0 < 10.0.10240.20162 | 10.0.10240.20162 |
| microsoft | windows_10_version_1607 | >= 10.0.14393.0 < 10.0.14393.6252 | 10.0.14393.6252 |
| microsoft | windows_10_version_1809 | >= 10.0.0 < 10.0.17763.4851 | 10.0.17763.4851 |
| microsoft | windows_10_version_1809 | >= 10.0.17763.0 < 10.0.17763.4851 | 10.0.17763.4851 |
| microsoft | windows_10_version_21h2 | >= 10.0.19043.0 < 10.0.19044.3448 | 10.0.19044.3448 |
| microsoft | windows_10_version_22h2 | >= 10.0.19045.0 < 10.0.19045.3448 | 10.0.19045.3448 |
| microsoft | windows_11_21h2 | < 10.0.22000.2416 | 10.0.22000.2416 |
| microsoft | windows_11_22h2 | < 10.0.22621.2275 | 10.0.22621.2275 |
| microsoft | windows_11_version_21h2 | >= 10.0.0 < 10.0.22000.2416 | 10.0.22000.2416 |
| microsoft | windows_11_version_22h2 | >= 10.0.22621.0 < 10.0.22621.2283 | 10.0.22621.2283 |
| microsoft | windows_server_2008 | — | — |
| microsoft | windows_server_2008_r2_service_pack_1 | >= 6.1.7601.0 < 6.1.7601.26713 | 6.1.7601.26713 |
| microsoft | windows_server_2008_service_pack_2 | >= 6.0.6003.0 < 6.0.6003.22264 | 6.0.6003.22264 |
| microsoft | windows_server_2012 | — | — |
| microsoft | windows_server_2012 | >= 6.2.9200.0 < 6.2.9200.24462 | 6.2.9200.24462 |
| microsoft | windows_server_2012_r2 | >= 6.3.9600.0 < 6.3.9600.21563 | 6.3.9600.21563 |
| microsoft | windows_server_2016 | < 10.0.14393.6252 | 10.0.14393.6252 |
| microsoft | windows_server_2016 | >= 10.0.14393.0 < 10.0.14393.6252 | 10.0.14393.6252 |
| microsoft | windows_server_2019 | < 10.0.17763.4851 | 10.0.17763.4851 |
| microsoft | windows_server_2019 | >= 10.0.17763.0 < 10.0.17763.4851 | 10.0.17763.4851 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vendor_msrc7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3xh9-7994-gpvw: Windows Common Log File System Driver Elevation of Privilege Vulnerability
ghsa_unreviewed·2023-09-12
CVE-2023-38143 [HIGH] GHSA-3xh9-7994-gpvw: Windows Common Log File System Driver Elevation of Privilege Vulnerability
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Microsoft
Windows Common Log File System Driver Elevation of Privilege Vulnerability
vendor_msrc·2023-09-12·CVSS 7.8
CVE-2023-38143 [HIGH] CWE-122 Windows Common Log File System Driver Elevation of Privilege Vulnerability
Windows Common Log File System Driver Elevation of Privilege Vulnerability
FAQ: What privileges could be gained by an attacker who successfully exploited this vulnerability?
An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.
FAQ: According to the CVSS metric, privileges required is low (PR:L). What does that mean for this vulnerability?
Any authenticated attacker could trigger this vulnerability. It does not require admin or other elevated privileges.
Windows Common Log File System Driver: Windows Common Log File System Driver
Microsoft: Microsoft
Customer Action Required: Yes
Impact: Elevation of Privilege
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely
Reference: https://catalog.update.micros
No detection rules found.
No public exploits indexed.
Qualys
Microsoft and Adobe Patch Tuesday, September 2023 Security Update Review
blogs_qualys·2023-09-12
Microsoft and Adobe Patch Tuesday, September 2023 Security Update Review
## Table of Contents
Microsoft Patch Tuesday for September 2023
Adobe Patches for September 2023
Zero-day Vulnerability Patched in September Patch Tuesday Edition
Other Critical Severity Vulnerabilities Patched in September Patch Tuesday Edition
Other Microsoft Vulnerability Highlights
Microsoft Release Summary
Discover and Prioritize Vulnerabilities in Vulnerability Management, Detection & Response (VMDR)
Rapid Response with Patch Management (PM)
EVALUATE Vendor-Suggested Mitigation with Policy Compliance (PC)
EXECUTE Mitigation Using Qualys Custom Assessment and Remediation (CAR)
Qualys Monthly Webinar Series
Microsoft has released the Patch Tuesday edition for September. This month’s updates have addressed 66 security vulnerabilities (including Edge Chromium-based) in multip
Bleepingcomputer
Microsoft September 2023 Patch Tuesday fixes 2 zero-days, 59 flaws
blogs_bleepingcomputer·2023-09-12·CVSS 6.5
[MEDIUM] Microsoft September 2023 Patch Tuesday fixes 2 zero-days, 59 flaws
## Microsoft September 2023 Patch Tuesday fixes 2 zero-days, 59 flaws
## Lawrence Abrams
3 Security Feature Bypass Vulnerabilities
24 Remote Code Execution Vulnerabilities
9 Information Disclosure Vulnerabilities
3 Denial of Service Vulnerabilities
5 Spoofing Vulnerabilities
5 Edge - Chromium Vulnerabilities
The total count of 59 flaws does not include five Microsoft Edge (Chromium) vulnerabilities two non-Microsoft flaws in Electron and Autodesk.
To learn more about the non-security updates released today, you can review our dedicated articles on the new Windows 11 KB5030219 cumulative update and Windows 10 KB5030211 updates released.
## Two actively exploited zero-day vulnerabilities
This month's Patch Tuesday fixes two zero-day vulnerabilities, with both exploited in attacks
Tenable
Microsoft’s September 2023 Patch Tuesday Addresses 61 CVEs (CVE-2023-36761)
blogs_tenable·2023-09-12·CVSS 6.5
[MEDIUM] Microsoft’s September 2023 Patch Tuesday Addresses 61 CVEs (CVE-2023-36761)
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Qualys
Microsoft and Adobe Patch Tuesday, September 2023 Security Update Review | Qualys
blogs_qualys·2023-09-12
Microsoft and Adobe Patch Tuesday, September 2023 Security Update Review | Qualys
#### Table of Contents
- Microsoft Patch Tuesday for September 2023
- Adobe Patches for September 2023
- Zero-day Vulnerability Patched in September Patch Tuesday Edition
- Other Critical Severity Vulnerabilities Patched in September Patch Tuesday Edition
- Other Microsoft Vulnerability Highlights
- Microsoft Release Summary
- Discover and Prioritize Vulnerabilities in Vulnerability Management, Detection & Response (VMDR)
- Rapid Response with Patch Management (PM)
- EVALUATE Vendor-Suggested Mitigation with Policy Compliance (PC)
- EXECUTE Mitigation Using Qualys Custom Assessment and Remediation (CAR)
- Qualys Monthly Webinar Series
Microsoft has released the Patch Tuesday edition for September. This month’s updates have addressed 66 security vulnerabilities (including Edge Chromium-ba
Zscaler
Zscaler found Windows Security Vulnerabilities | 09-12-2023
blogs_zscaler·CVSS 7.8
[HIGH] Zscaler found Windows Security Vulnerabilities | 09-12-2023
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
2023-09-12
Published