CVE-2023-35366

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 11, 2023

Updated: May 29, 2024

CWE ID 20

Summary

CVE-2023-35366 is a remote code execution vulnerability affecting Microsoft's Windows Routing and Remote Access Service (RRAS). An attacker can exploit this weakness by sending specially crafted RRAS packets to a targeted system, potentially gaining unauthorized administrative control. Successful exploitation could lead to significant security risks, including data theft, unauthorized access, and system damage. Organizations are urged to update their RRAS installations with the latest security patches to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzlExF
https://www.cve.org/CVERecord?id=CVE-2023-35366
https://nvd.nist.gov/vuln/detail/CVE-2023-35366

Back to Vulnerability Database

CVE-2023-35366

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations