CVE-2023-35376

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 8, 2023
Updated: Jan 1, 2025
CWE ID 20

Summary

CVE-2023-35376 is a newly disclosed vulnerability affecting Microsoft Message Queuing (MSMQ). Hackers can exploit this Denial of Service (DoS) issue by sending specially crafted messages to targeted MSMQ servers, causing them to crash and become unresponsive. The vulnerability can lead to significant downtime and disruption of services that rely on MSMQ for messaging functionality. Microsoft has released a patch to address this issue, and it is strongly recommended that organizations apply the update as soon as possible to mitigate the risk of a DoS attack.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share