Share
## https://sploitus.com/exploit?id=2ED46B80-42DE-5C1E-9D45-173824904C34
# CVE-2023-36874

For demonstration purposes only. Exploit works on vulnerable Windows clients/servers.

Compile code and create c:\test\system32 directories. Place your wermgr.exe in that directory and run compiled PoC.


https://github.com/Wh04m1001/CVE-2023-36874/assets/44291883/417d1384-4f3f-42c0-9e07-80d4347ed9c7


Testing on windows 10 19045.2006


https://github.com/Wh04m1001/CVE-2023-36874/assets/44291883/483c37bc-874f-4a5c-80fd-b962057d7215





Resources:

https://www.crowdstrike.com/blog/falcon-complete-zero-day-exploit-cve-2023-36874/

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36874