← ExploitWatch
HomeExploited Vulnerabilities

CVE-2016-0151 — Actively Exploited: Client-Server Run-time Subsystem (CSRSS) (Microsoft)

The Client-Server Run-time Subsystem (CSRSS) in Microsoft mismanages process tokens, which allows local users to gain privileges via a crafted application.

CVE IDCVE-2016-0151
VendorMicrosoft
ProductClient-Server Run-time Subsystem (CSRSS)
Vulnerability nameMicrosoft Windows CSRSS Security Feature Bypass Vulnerability
Date added2022-03-28
Remediation due2022-04-18
Known ransomware useKnown
Required actionApply updates per vendor instructions.
DescriptionThe Client-Server Run-time Subsystem (CSRSS) in Microsoft mismanages process tokens, which allows local users to gain privileges via a crafted application.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →