THREATOPS
THREAT OPSCVEs › CVE-2023-36884

CVE-2023-36884 — Microsoft Windows Search Remote Code Execution Vulnerability

CISA KEVExploited: confirmedMicrosoft

Microsoft Windows Search contains an unspecified vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file, leading to remote code execution.

Vulnerability details

Exploiting threat actors