CVE-2023-28303

LOW

Microsoft Snip & Sketch/Snipping Tool - Unauthorized Exposure of Private Personal Information

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-28303. PoCs published by m31r0n.

AI-analyzed exploit summary This repository contains a functional Python-based CLI tool that detects and restores PNG files affected by CVE-2023-28303, a vulnerability in the Windows Snipping Tool where cropped images retain hidden data beyond the IEND chunk. The tool reconstructs the original image by parsing and decompressing the appended IDAT chunks.

Description

Windows Snipping Tool Information Disclosure Vulnerability

Exploits (1)

nomisec WORKING POC

by m31r0n · poc

https://github.com/m31r0n/SnipRecover-CLI

View Code ZIP pw:eip

This repository contains a functional Python-based CLI tool that detects and restores PNG files affected by CVE-2023-28303, a vulnerability in the Windows Snipping Tool where cropped images retain hidden data beyond the IEND chunk. The tool reconstructs the original image by parsing and decompressing the appended IDAT chunks.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Windows Snipping Tool (versions affected by CVE-2023-28303)

No auth needed

Prerequisites: PNG files created or modified by the vulnerable Windows Snipping Tool

MITRE ATT&CK

T1005 - Data from Local System

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28303

Scores

CVSS v3 3.3

EPSS 0.0202

EPSS Percentile 78.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-359

Status published

Products (2)

microsoft/snip_\&_sketch 9.0 - 10.2008.3001.0

microsoft/snipping_tool 11.0.0 - 11.2302.20.0

Published Jun 13, 2023

Tracked Since Feb 18, 2026