What is CVE-2023-32162?

CVE-2023-32162 is a vulnerability in Wacom Drivers for Windows that allows local attackers to escalate privileges on affected installations.

How severe is CVE-2023-32162?

CVE-2023-32162 has a severity rating of 7.8 (high).

How can I fix CVE-2023-32162?

To fix CVE-2023-32162, you should update Wacom Drivers for Windows to a version that has patched the vulnerability.

Are all versions of Wacom Drivers for Windows affected by CVE-2023-32162?

No, versions prior to 6.3.45-1 are not affected by CVE-2023-32162.

Where can I find more information about CVE-2023-32162?

You can find more information about CVE-2023-32162 on the Zero Day Initiative website.

Vulnerability/
CVE-2023-32162

high

7.8

CWE

732

6/9/2023

26/9/2024

CVE-2023-32162: (0Day) Wacom Drivers for Windows Incorrect Permission Assignment Local Privilege Escalation Vulnerability

First published: Wed Sep 06 2023(Updated: )

This vulnerability allows local attackers to escalate privileges on affected installations of Wacom Drivers for Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the WacomInstallI.txt file by the PrefUtil.exe utility. The issue results from incorrect permissions on the WacomInstallI.txt file. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM.

Credit: zdi-disclosures@trendmicro.com zdi-disclosures@trendmicro.com

Affected Software	Affected Version	How to fix
Wacom Driver	=6.3.45-1
Microsoft Windows
Wacom Drivers for Windows

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2023-32162?
CVE-2023-32162 is a vulnerability in Wacom Drivers for Windows that allows local attackers to escalate privileges on affected installations.
How severe is CVE-2023-32162?
CVE-2023-32162 has a severity rating of 7.8 (high).
How can I fix CVE-2023-32162?
To fix CVE-2023-32162, you should update Wacom Drivers for Windows to a version that has patched the vulnerability.
Are all versions of Wacom Drivers for Windows affected by CVE-2023-32162?
No, versions prior to 6.3.45-1 are not affected by CVE-2023-32162.
Where can I find more information about CVE-2023-32162?
You can find more information about CVE-2023-32162 on the Zero Day Initiative website.

collector/nvd-api
collector/nvd-index
agent/author
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/severity
agent/title
agent/references
agent/first-publish-date
agent/description
collector/zdi-advisory
source/ZDI
alias/ZDI-23-741
alias/ZDI-CAN-16318
alias/CVE-2023-32162
agent/software-canonical-lookup
agent/event
agent/trending
agent/tags
agent/source
vendor/wacom
canonical/wacom driver
version/wacom driver/6.3.45-1
vendor/microsoft
canonical/microsoft windows
canonical/wacom drivers for windows

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.