CVE-2023-28229CISA KEVEPSS p76.6%

CVE-2023-28229Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability

Microsoft / Windows CNG Key Isolation Service

Description

Microsoft Windows Cryptographic Next Generation (CNG) Key Isolation Service contains an unspecified vulnerability that allows an attacker to gain specific limited SYSTEM privileges.

Scoring

EPSS1.87% probability of exploitation · percentile 76.6% · 2026-06-19T12:03:05Z

CISA KEV entry

Added to KEV: 2023-10-04

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Windows CNG Key Isolation Service Privilege Escalation Vulnerabilitykev-cve-2023-282290%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2022-41125
CVE
Microsoft Win32K Privilege Escalation Vulnerability
CVE
Microsoft Windows Kernel Privilege Escalation Vulnerability
CVE
CVE-2026-44810
CVE
CVE-2025-33067
CVE
Microsoft Windows Client Server Runtime Subsystem (CSRSS) Privilege Escalation Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.