CVE-2023-36004: 
vulnerability analysis and mitigation

Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability, identified as CVE-2023-36004, was disclosed on December 12, 2023. The vulnerability affects multiple versions of Microsoft Windows, including Windows 10, Windows 11, and various Windows Server editions (NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 7.5 (HIGH) with the following vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H. Microsoft has classified this as an improper authentication vulnerability (CWE-287) (NVD).

The vulnerability could potentially lead to high impacts on confidentiality, integrity, and availability of affected systems. As a spoofing vulnerability in the Windows Data Protection Application Programming Interface (DPAPI), it could allow attackers to compromise sensitive data protection mechanisms (Rapid7).

Microsoft has released security updates to address this vulnerability across multiple affected Windows versions. Updates are available through various KB articles including KB5033379 for Windows 10 1507, KB5033373 for Windows 10 1607, KB5033371 for Windows 10 1809, and several others for different Windows versions (Rapid7).