CVE-2023-36874

ENISA EUVD: EUVD-2023-40794 ↗

Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero

Triaged: March 3, 2026 5 articles Published: 2023-07-11

VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-23

68.83%

probability

This CVE has a 68.83% probability of being exploited in the next 30 days.

0% Top 98.6th percentile of all CVEs 100%

CVSS v3.1

Source: VulnerabilityLookup (CIRCL)

7.8

HIGH

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Temporal

Exploit Code Maturity

Unproven

Remediation Level

Official Fix

Report Confidence

Confirmed

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Description

NVD

Windows Error Reporting Service Elevation of Privilege Vulnerability

Affected Products

Microsoft

Windows 10 Version 1809

10.0.17763.0

Microsoft

Windows 10 Version 1809

10.0.0

Microsoft

Windows Server 2019

10.0.17763.0

Microsoft

Windows Server 2019 (Server Core installation)

10.0.17763.0

Microsoft

Windows Server 2022

10.0.20348.0

microsoft

windows 10 1507

microsoft

windows 10 1607

microsoft

windows 10 1809

microsoft

windows 10 21h2

microsoft

windows 10 22h2

Microsoft

Windows Server 2016

10.0.14393.0 <10.0.14393.6085

Microsoft

Windows Server 2008 R2 Service Pack 1 (Server Core installation)

6.1.7601.0 <6.1.7601.26623

Microsoft

Windows Server 2012 R2 (Server Core installation)

6.3.9600.0 <6.3.9600.21063

Microsoft

Windows Server 2008 R2 Service Pack 1

6.1.7601.0 <6.1.7601.26623

Microsoft

Windows 10 Version 21H2

10.0.19043.0 <10.0.19044.3208

Microsoft

Windows Server 2022

10.0.20348.0 <10.0.20348.1850

Microsoft

Windows Server 2016 (Server Core installation)

10.0.14393.0 <10.0.14393.6085

Microsoft

Windows 11 version 22H2

10.0.22621.0 <10.0.22621.1992

Microsoft

Windows 11 version 21H2

10.0.0 <10.0.22000.2176

Microsoft

Windows Server 2008 Service Pack 2

6.0.6003.0 <6.0.6003.22175

Microsoft

Windows 10 Version 22H2

10.0.19045.0 <10.0.19045.3208

Microsoft

Windows Server 2012 (Server Core installation)

6.2.9200.0 <6.2.9200.24374

Microsoft

Windows Server 2008 Service Pack 2

6.0.6003.0 <6.0.6003.22175

Microsoft

Windows Server 2012 R2

6.3.9600.0 <6.3.9600.21063

Microsoft

Windows Server 2019

10.0.17763.0 <10.0.17763.4645

Microsoft

Windows Server 2019 (Server Core installation)

10.0.17763.0 <10.0.17763.4645

Microsoft

Windows 10 Version 1809

10.0.17763.0 <10.0.17763.4645

Microsoft

Windows 10 Version 1507

10.0.10240.0 <10.0.10240.20048

Microsoft

Windows 10 Version 1809

10.0.0 <10.0.17763.4645

Microsoft

Windows Server 2008 Service Pack 2 (Server Core installation)

6.0.6003.0 <6.0.6003.22175

Microsoft

Windows Server 2012

6.2.9200.0 <6.2.9200.24374

Microsoft

Windows 10 Version 1607

10.0.14393.0 <10.0.14393.6085

Attack Intelligence

CWE-59 · Link Following CWE-664 · Improper Control of a Resource Through its Lifetime CWE-706 · Use of Incorrectly-Resolved Name or Reference

Google Project Zero

Discovered

June 30, 2023

Patched

July 11, 2023

Reported by

Vlad Stolyarov and Maddie Stone of Google's Threat Analysis Group (TAG)

Root Cause Analysis

???

Exploits & PoC

Wh04m1001/CVE-2023-36874

241 2023-08-23

Octoberfest7/CVE-2023-36874_BOF

Weaponized CobaltStrike BOF for CVE-2023-36874 Windows Error Reporting LPE

205 2023-08-25

d0rb/CVE-2023-36874

This repository contains a proof-of-concept exploit written in C++ that demonstrates the exploitation of a vulnerability affecting the Windows Error R

78 2024-03-13

crisprss/CVE-2023-36874

CVE-2023-36874 Proof of Concept

2 2023-08-22

4 repos — triés par ⭐ Rechercher sur GitHub ↗

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36874

vendor-advisory

Signal Intelligence

Confidenceⓘ

78%

EPSS 68.83%

CVSS v3.1 7.8

Mentions 5

Last Seen Feb 25, 2025

CNA Information

CNA Assigner

microsoft

CNA Title

Windows Error Reporting Service Elevation of Privilege Vulnerability

Analyst Note

This CVE is confirmed as a legitimate Windows elevation of privilege vulnerability affecting Windows 10 Version 1809, with a HIGH CVSS score of 7.8 and documented in official Microsoft patch guidance. The vulnerability was tracked by Google Project Zero, demonstrating independent verification of the issue's validity and severity.

Triage Info

Decided atMar 03, 2026

Published DateJul 11, 2023