7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Microsoft Client Server Run-time Subsystem is a client/server run-time subsystem from Microsoft Corporation of the United States, manifested as the csrss.exe process. It is a component of the Windows NT operating system family, appearing in Windows NT 3.1 and later systems, and provides the user mode side of the Win32 subsystem.An elevation of privilege vulnerability exists in the Microsoft Client Server Run-time Subsystem (CSRSS), which stems from the existence of improper application An attacker could exploit the vulnerability to cause an elevation of privilege.
CPE | Name | Operator | Version |
---|---|---|---|
microsoft windows | eq | 8.1 |