How severe is CVE-2022-23764?

CVE-2022-23764 has a CVSS v3 score of 8.8 (HIGH).

CVE-2022-23764

Name: windows
Author: microsoft

8.8HIGH

The vulnerability causing from insufficient verification procedures for downloaded files during WebCube update. Remote attackers can bypass this verification logic to update both digitally signed and

Publicado: 8/17/2022Atualizado: 11/21/2024

Descrição

The vulnerability causing from insufficient verification procedures for downloaded files during WebCube update. Remote attackers can bypass this verification logic to update both digitally signed and unauthorized files, enabling remote code execution.

Análise IADesenvolvido por IA

Produtos Afetados

terutenwebcube

microsoftwindows

Referências

https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=66876
Third Party Advisory
https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=66876
Third Party Advisory