cve/2023/CVE-2023-35863.md

### [CVE-2023-35863](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35863)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

In MADEFORNET HTTP Debugger through 9.12, the Windows service does not set the seclevel registry key before launching the driver. Thus, it is possible for an unprivileged application to obtain a handle to the NetFilterSDK wrapper before the service obtains exclusive access.

### POC

#### Reference
- https://ctrl-c.club/~blue/nfsdk.html
- https://www.michaelrowley.dev/research/posts/nfsdk/nfsdk.html

#### Github
No PoCs found on GitHub currently.
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2023-35863](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35863)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`In MADEFORNET HTTP Debugger through 9.12, the Windows service does not set the seclevel registry key before launching the driver. Thus, it is possible for an unprivileged application to obtain a handle to the NetFilterSDK wrapper before the service obtains exclusive access.`

			`### POC`

			`#### Reference`
			`- https://ctrl-c.club/~blue/nfsdk.html`
Update CVE sources 2024-05-28 08:49 2024-05-28 08:49:17 +00:00			`- https://www.michaelrowley.dev/research/posts/nfsdk/nfsdk.html`
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00
			`#### Github`
			`No PoCs found on GitHub currently.`