CVE-2023-24947: 
vulnerability analysis and mitigation

Windows Bluetooth Driver Remote Code Execution Vulnerability (CVE-2023-24947) was identified and disclosed in early 2023. The vulnerability affects multiple versions of Microsoft Windows systems including Windows 10 (versions 1607, 1809, 20H2, 21H2, 22H2) and Windows Server (2016 and 2019). Microsoft has assigned this vulnerability a high severity rating with a CVSS base score of 8.8 (Microsoft Advisory).

The vulnerability has been classified as a Use After Free (CWE-416) issue. It received a CVSS v3.1 base score of 8.8 (HIGH) with the following vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, indicating that it requires adjacent network access, has low attack complexity, requires no privileges or user interaction, and can result in high impacts to confidentiality, integrity, and availability (NVD).

The vulnerability poses significant risks as it allows for remote code execution through the Windows Bluetooth Driver. If successfully exploited, an attacker could gain high levels of access affecting the confidentiality, integrity, and availability of the targeted system (Microsoft Advisory).

Microsoft has released security updates to address this vulnerability through various KB patches including KB5026363 for Windows 10 version 1607 and Windows Server 2016, KB5026362 for Windows 10 version 1809 and Windows Server 2019, and KB5026361 for Windows 10 versions 20H2, 21H2, and 22H2 (Rapid7).