CVE-2023-21725: Windows Malicious Software Removal Tool Elevation of Privilege Vulnerability

Overview

Severity

Medium (CVSS 6.3)

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H/E:U/RL:O/RC:C

Category

Elevation of Privilege

Exploit Status

Not Exploited

Exploitation Likelihood

Unlikely

Patch Tuesday

2023-Jan

Released

2023-01-10

Last Updated

2023-02-06

EPSS Score

0.18% (percentile: 40.0%)

FAQ

According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability? Successful exploitation of this vulnerability requires an attacker to win a race condition. According to the CVSS metrics, successful exploitation of this vulnerability could lead to no loss of confidentiality (C:N) but have major impact on integrity (I:H) and on availability (A:H). What does that mean for this vulnerability? This vulnerability does not allow disclosure of any confidential information, but could allow an attacker to delete data that could include data that results in the service being unavailable.

Affected Products (2)

System Center

• Windows Malicious Software Removal Tool 64-bit
• Windows Malicious Software Removal Tool 32-bit

Security Updates (2)

• 891716
• 891716

Acknowledgments

<a href="https://twitter.com/filip_dragovic">Filip Dragovic</a> with Infigo IS

Revision History

• 2023-01-10: Information published.
• 2023-02-06: Updated acknowledgment. This is an informational change only.