CVE-2023-35632: 
vulnerability analysis and mitigation

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability (CVE-2023-35632) was disclosed on December 12, 2023. This vulnerability affects multiple versions of Microsoft Windows operating systems, including Windows 10 (versions 1507, 1607, 1809, 21H2, 22H2) and Windows Server (2012, 2012 R2, 2016, 2019) (NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the following vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. Microsoft has identified this as an Integer Overflow or Wraparound vulnerability (CWE-190) (NVD).

This elevation of privilege vulnerability in the Windows Ancillary Function Driver for WinSock could allow an attacker to gain elevated privileges on affected systems, potentially leading to complete system compromise with high impacts on confidentiality, integrity, and availability (Microsoft).

Microsoft has released security updates to address this vulnerability. The fixes are available through various KB updates including KB5033379 (Windows 10 1507), KB5033373 (Windows 10 1607), KB5033371 (Windows 10 1809), KB5033372 (Windows 10 21H2/22H2), KB5033429 (Windows Server 2012), and KB5033420 (Windows Server 2012 R2) (Rapid7).