CVE-2023-36740

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 12, 2023

Updated: May 29, 2024

CWE ID 122

Summary

CVE-2023-36740 is a newly disclosed remote code execution vulnerability affecting 3D Viewer applications. Malicious actors can exploit this issue by sending specially crafted data to the target system, potentially leading to arbitrary code execution. Successful exploitation allows attackers to gain control over the affected system and perform unauthorized actions. The vulnerability poses a significant risk to organizations using 3D Viewer technology and highlights the importance of applying available patches as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft 3D Viewer

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ryjwGX
https://www.cve.org/CVERecord?id=CVE-2023-36740
https://nvd.nist.gov/vuln/detail/CVE-2023-36740

Back to Vulnerability Database