CVE-2023-1047
MEDIUMTechPowerUp RealTemp 3.7.0.0 - Improper Initialization
Title source: llmDescription
A vulnerability classified as critical was found in TechPowerUp RealTemp 3.7.0.0. This vulnerability affects unknown code in the library WinRing0x64.sys. The manipulation leads to improper initialization. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. VDB-221806 is the identifier assigned to this vulnerability.
References (3)
Core 3
Core References
Permissions Required vdb-entry
technical-description
https://vuldb.com/?id.221806
Permissions Required signature
permissions-required
https://vuldb.com/?ctiid.221806
Vendor Advisory exploit
https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-1047
Scores
CVSS v3
5.3
EPSS
0.0040
EPSS Percentile
31.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-665
Status
published
Products (1)
techpowerup/realtemp
3.7.0.0
Published
Feb 26, 2023
Tracked Since
Feb 18, 2026