CVE-2023-35385

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 8, 2023

Updated: May 29, 2024

CWE ID 190

Summary

CVE-2023-35385 is a critical remote code execution vulnerability affecting Microsoft Message Queuing (MSMQ). An attacker can exploit this issue by sending a maliciously crafted MSMQ message to a victim's system. Successful exploitation allows the attacker to execute arbitrary code on the target system, potentially leading to significant security risks and compromise. Microsoft strongly recommends applying the available patch as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzlExr
https://www.cve.org/CVERecord?id=CVE-2023-35385
https://nvd.nist.gov/vuln/detail/CVE-2023-35385

Back to Vulnerability Database

CVE-2023-35385

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations