CVE-2023-28229: Microsoft Windows CNG Key Isolation Service Privilege
Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability. Microsoft Windows Cryptographic Next Generation (CNG) Key Isolation Service contains an unspecified vulnerability that allows an attacker to gain specific limited SYSTEM privileges.
- CISA KEV-listed (remediation due 2023-10-25)
- EPSS 8.6% (92.6% percentile)