CVE-2023-36582

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Oct 10, 2023

Updated: May 29, 2024

CWE ID 190

Summary

CVE-2023-36582 is a remote code execution vulnerability affecting Microsoft Message Queuing (MSMQ). Attackers can exploit this issue by sending specially crafted messages to an MSMQ queue, allowing them to execute arbitrary code on the target system with the same user rights as the MSMQ service. Successful exploitation could lead to the installation of malware, unauthorized system access, or other malicious activities. Microsoft strongly advises users to update their MSMQ servers to address this critical vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rwcXre
https://www.cve.org/CVERecord?id=CVE-2023-36582
https://nvd.nist.gov/vuln/detail/CVE-2023-36582

Back to Vulnerability Database

CVE-2023-36582

CVSS 3.1 Score 7.3 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations