Rapid7 Vulnerability & Exploit Database

Microsoft CVE-2023-36049: .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft CVE-2023-36049: .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability

Severity
8
CVSS
(AV:N/AC:L/Au:S/C:P/I:C/A:P)
Published
11/14/2023
Created
11/15/2023
Added
11/14/2023
Modified
07/15/2024

Description

Microsoft CVE-2023-36049: .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability

Solution(s)

  • msft-kb5031984-433e3137-8a26-4d7a-8bcb-7513377c6075
  • msft-kb5031984-a9946e0d-1914-439f-8900-6018a4f28c6d
  • msft-kb5031984-cab4ff71-44ba-4f8e-81ad-d8e30a329fd0
  • msft-kb5031985-61c8af7a-3e3c-4450-b720-49306c9c8f89
  • msft-kb5031986-324a1004-b9b3-4f2f-bd94-c9f0537dca5a
  • msft-kb5031987-9975c45e-1267-4183-9ecd-ff5415df3fa4
  • msft-kb5031987-c6c33d6a-f902-4334-9ec3-6bcf225b7fa4
  • msft-kb5031987-f178a4f4-0c47-4249-bce4-366cfcc17c7b
  • msft-kb5031988-5e91d134-1e63-4039-8726-06f2fbd2fa46
  • msft-kb5031988-941f6c16-d744-46a1-b29d-cb676ea0debb
  • msft-kb5031988-a5de7c7c-2fe6-4dc6-b2c6-c22940fbc8d0
  • msft-kb5031988-d173555e-8737-4a41-84c8-e331a3dee0eb
  • msft-kb5031989-4ce5dabd-757f-42dc-9f9c-83e1d6a3d7d4
  • msft-kb5031989-ded43933-708a-4a44-b041-f469e1be5634
  • msft-kb5031989-f52e66f4-656f-47c8-91c1-2ebff5f6e929
  • msft-kb5031990-0d5993f9-5c5a-4d92-926e-0c448a92c6c7
  • msft-kb5031990-60e7b103-48e8-41c7-a7c5-f7e290477218
  • msft-kb5031990-ee744fbc-c350-464d-953a-d503a50bcb20
  • msft-kb5031991-67473b4a-911c-434a-8bc7-826117ed5f28
  • msft-kb5031992-739bee89-761a-404d-b139-db4f17deec07
  • msft-kb5031993-38ad339f-1ac3-46ac-bac9-b5fec4656c0f
  • msft-kb5031993-e3fce25d-0330-4dea-a821-b5ec16fa7a05
  • msft-kb5031994-662c1c61-4321-420d-9363-7d242e4e2843
  • msft-kb5031995-d8c452a6-cd28-4ae6-bde1-270392087871
  • msft-kb5031998-4d769bf8-bafe-44b1-8c90-0e0d7943d92e
  • msft-kb5031999-6d5baada-4d8d-4b38-8360-1daaf0edc13e
  • msft-kb5031999-886e6465-7979-4b6b-901a-e7cf9cbf7775
  • msft-kb5032000-c4bfc986-d2a3-413d-bcf2-bdfe2a790aa3
  • msft-kb5032001-b145be4e-f521-4216-a07c-f9912dad6417
  • msft-kb5032004-0614fa73-dbe1-4cc7-bb71-c28acab7b35b
  • msft-kb5032005-a02e92d6-1ab1-498f-9161-e0e05bb7a882
  • msft-kb5032005-af726f2b-23c7-4357-a838-223c041f3016
  • msft-kb5032005-d4cb1dff-53b1-4ad6-860e-418c1126c4aa
  • msft-kb5032005-e271d301-7a37-44b6-83e4-f49d3901c666
  • msft-kb5032006-33f65e6f-9649-4d06-b323-5228914e0318
  • msft-kb5032007-019f2620-19db-48c1-ae23-5ee3bcac293d
  • msft-kb5032007-5ec9da23-a4a7-4789-841c-bb4697f584d4
  • msft-kb5032008-18c27df8-ad8b-48ba-8380-998339acaea3
  • msft-kb5032008-e90858c6-3071-42eb-bc45-f11f10184020
  • msft-kb5032009-247eb4d7-62f2-426b-a604-a844aaa1afa3
  • msft-kb5032009-28d5df30-e36e-4acd-a6ff-1446f5203b27
  • msft-kb5032009-53ae93ac-4b7e-4aa6-bc06-a4b38ccae11d
  • msft-kb5032010-fdc56324-d50c-46d0-924e-c89181152adc
  • msft-kb5032011-166235cb-08a5-424f-bcb0-46aac7f7c986
  • msft-kb5032011-8fc524c8-57c6-4d09-abc4-469855087c97
  • msft-kb5032012-99562c15-735d-4f0b-84ff-13c5cfb99ccf
  • msft-kb5032197-01f50d2b-8e36-4e09-8525-c159c263ff14
  • msft-kb5032197-4b8b8172-356b-45aa-9e86-aa459ab0b939
  • msft-kb5032197-80bdc166-b91b-4627-a5e9-563bcb64a228
  • msft-kb5032199-41b12843-a97e-4d53-8c89-be47dbeed25f
  • msft-kb5032199-7797b654-de84-42ca-be70-51d296209d44

References

  • https://attackerkb.com/topics/cve-2023-36049
  • CVE - 2023-36049
  • 5031984
  • 5031985
  • 5031986
  • 5031987
  • 5031988
  • 5031989
  • 5031990
  • 5031991
  • 5031992
  • 5031993
  • 5031994
  • 5031995
  • 5031998
  • 5031999
  • 5032000
  • 5032001
  • 5032004
  • 5032005
  • 5032006
  • 5032007
  • 5032008
  • 5032009
  • 5032010
  • 5032011
  • 5032012
  • 5032185
  • 5032186
  • 5032197
  • 5032199
  • 5032336
  • 5032337
  • 5032338
  • 5032339
  • 5032340
  • 5032341
  • 5032342
  • 5032343
  • 5032344
  • 5032883
  • 5032884
View more

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;