CVE-2023-36802

ENISA EUVD: EUVD-2023-40740 ↗

Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero

Triaged: March 3, 2026 4 articles Published: 2023-09-12

VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-23

75.43%

probability

This CVE has a 75.43% probability of being exploited in the next 30 days.

0% Top 98.9th percentile of all CVEs 100%

CVSS v3.1

Source: VulnerabilityLookup (CIRCL)

7.8

HIGH

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Temporal

Exploit Code Maturity

Unproven

Remediation Level

Official Fix

Report Confidence

Confirmed

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Description

NVD

Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability

Affected Products

Microsoft

Windows 10 Version 1809

10.0.17763.0

Microsoft

Windows 10 Version 1809

10.0.0

Microsoft

Windows Server 2019

10.0.17763.0

Microsoft

Windows Server 2019 (Server Core installation)

10.0.17763.0

Microsoft

Windows Server 2022

10.0.20348.0

microsoft

windows 10 1809

microsoft

windows 10 21h2

microsoft

windows 10 22h2

microsoft

windows 11 21h2

microsoft

windows 11 22h2

Microsoft

Windows Server 2022

10.0.20348.0 <10.0.20348.1970

Microsoft

Windows Server 2019 (Server Core installation)

10.0.17763.0 <10.0.17763.4851

Microsoft

Windows 10 Version 22H2

10.0.19045.0 <10.0.19045.3448

Microsoft

Windows 10 Version 1809

10.0.0 <10.0.17763.4851

Microsoft

Windows Server 2019

10.0.17763.0 <10.0.17763.4851

Microsoft

Windows 11 version 22H2

10.0.22621.0 <10.0.22621.2283

Microsoft

Windows 10 Version 21H2

10.0.19043.0 <10.0.19044.3448

Microsoft

Windows 10 Version 1809

10.0.17763.0 <10.0.17763.4851

Microsoft

Windows 11 version 21H2

10.0.0 <10.0.22000.2416

Attack Intelligence

CWE-118 · Incorrect Access of Indexable Resource ('Range Error') CWE-119 · Buffer Overflow CWE-416 · Use After Free CWE-664 · Improper Control of a Resource Through its Lifetime CWE-666 · Operation on Resource in Wrong Phase of Lifetime CWE-672 · Operation on a Resource after Expiration or Release CWE-825 · Expired Pointer Dereference

Google Project Zero

Patched

Sept. 12, 2023

Reported by

Quan Jin(@jq0904) & ze0r with DBAPPSecurity WeBin Lab, Valentina Palmiotti with IBM X-Force, Microsoft Threat Intelligence, Microsoft Security Response Center

Root Cause Analysis

https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2023/CVE-2023-36802.html

Exploits & PoC

chompie1337/Windows_MSKSSRV_LPE_CVE-2023-36802

LPE exploit for CVE-2023-36802

166 2023-10-10

Nero22k/cve-2023-36802

Exploit for CVE-2023-36802 targeting MSKSSRV.SYS driver

112 2023-10-26

x0rb3l/CVE-2023-36802-MSKSSRV-LPE

PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy

36 2023-10-24

4zur-0312/CVE-2023-36802

CVE-2023-36802 ITW case

14 2023-10-25

rahul0xkr/Reproducing-CVE-2023-36802

Analyzing CVE-2023-36802 (mskssrv.sys) - object type confusion bug

0 2025-11-12

5 repos — triés par ⭐ Rechercher sur GitHub ↗

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36802

vendor-advisory

Signal Intelligence

Confidenceⓘ

78%

EPSS 75.43%

CVSS v3.1 7.8

Mentions 4

Last Seen Sep 13, 2023

CNA Information

CNA Assigner

microsoft

CNA Title

Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability

Analyst Note

CVE-2023-36802 is confirmed as a legitimate elevation of privilege vulnerability in Windows 10 affecting the Microsoft Streaming Service Proxy with a HIGH CVSS score of 7.8. It was documented by CERT-EU in their September 2023 Patch Tuesday advisory, providing authoritative vendor confirmation despite limited public coverage.

Threat Actors 3

Cobalt

apt_group Financial crime 🇷🇺 RU

TA505

apt_group Financial gain 🇷🇺 RU

Earth Lamia

apt_group Information theft and espionage 🇨🇳 CN

Triage Info

Decided atMar 03, 2026

Published DateSep 12, 2023