CVE-2023-29360CISA KEVEPSS p97.4%

CVE-2023-29360Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability

Microsoft / Streaming Service

Description

Microsoft Streaming Service contains an untrusted pointer dereference vulnerability that allows for privilege escalation, enabling a local attacker to gain SYSTEM privileges.

Scoring

EPSS22.13% probability of exploitation · percentile 97.4% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2024-02-29

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Streaming Service Untrusted Pointer Dereference Vulnerabilitykev-cve-2023-293600%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Microsoft Streaming Service Proxy Privilege Escalation Vulnerability
CVE
Microsoft Windows Improper Privilege Management Vulnerability
CVE
Microsoft Windows Kernel-Mode Driver Untrusted Pointer Dereference Vulnerability
CVE
Microsoft Windows Client Server Runtime Subsystem (CSRSS) Privilege Escalation Vulnerability
CVE
CVE-2025-24084
CVE
Microsoft Windows Out-of-Bounds Read Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.