CVE-2023-36425

CVSS 3.1 Score 8.0 of 10 (high)

Details

Published Nov 14, 2023

Updated: May 29, 2024

CWE ID 122

Summary

CVE-2023-36425 is a newly discovered vulnerability affecting the Windows Distributed File System (DFS). This issue permits an unauthenticated attacker to execute arbitrary code remotely by exploiting a flaw in the DFS Replication Service. Successful exploitation could lead to significant security risks, such as unauthorized access to sensitive data or system takeover. Microsoft has released a security update to address this vulnerability, and it is strongly recommended that affected systems be promptly patched to mitigate potential threats.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tZ6Tjk
https://www.cve.org/CVERecord?id=CVE-2023-36425
https://nvd.nist.gov/vuln/detail/CVE-2023-36425

Back to Vulnerability Database

CVE-2023-36425

CVSS 3.1 Score 8.0 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations