CVE-2023-36909

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 8, 2023

Updated: May 29, 2024

CWE ID 191

Summary

CVE-2023-36909 is a newly disclosed denial-of-service (DoS) vulnerability affecting Microsoft Message Queuing (MSMQ). An attacker can exploit this weakness by sending specially crafted messages to a MSMQ server, resulting in excessive resource consumption and service disruption. The vulnerability may lead to extended downtime and negatively impact business operations that rely on MSMQ for message delivery. Microsoft has released a patch to mitigate this risk, and it is strongly advised to install the update as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzrFkx
https://www.cve.org/CVERecord?id=CVE-2023-36909
https://nvd.nist.gov/vuln/detail/CVE-2023-36909

Back to Vulnerability Database

CVE-2023-36909

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations