CVE-2023-29360

Microsoft Streaming Service contains an untrusted pointer dereference vulnerability that allows for privilege escalation, enabling a local attacker to gain SYSTEM privileges. Vendor/Product: Microsoft Streaming Service. Added to CISA KEV 2024-02-29; required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.