CVE-2016-0151

Microsoft Windows CSRSS Security Feature Bypass Vulnerability

The Client-Server Run-time Subsystem (CSRSS) in Microsoft mismanages process tokens, which allows local users to gain privileges via a crafted application. Vendor/Product: Microsoft Client-Server Run-time Subsystem (CSRSS). Added to CISA KEV 2022-03-28; required action: Apply updates per vendor instructions.

Category: Vulnerability, Known Exploited

Reference: NVD CVE-2016-0151