Detections
Analytics
Microsoft Identity Linux Broker RCE Vulnerability (September 2023)
medium Nessus Plugin ID 183959
Language:
Synopsis
The Microsoft Identity Broker is installed on the remote host is affected by multiple remote code execution vulnerability.Description
The version of the Microsoft Identity Broker app installed on the remote Windows host is prior to 1.6.1. It is, therefore, affected by a remote code execution vulnerability where an attacker must send the user a malicious file and convince them to open it to exploit this unauthorized arbitrary command execution vulnerability.Solution
Update to the latest version of Microsoft Identity Linux Broker.See Also
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36736
Plugin Details
Severity: Medium
ID: 183959
File Name: smb_nt_ms23_sep_identity_broker.nasl
Version: 1.2
Type: local
Family: Misc.
Published: 10/27/2023
Updated: 10/23/2024
Configuration: Enable thorough checks
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 2.5
CVSS v2
Risk Factor: Low
Base Score: 3.6
Temporal Score: 2.7
Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:N
CVSS Score Source: CVE-2023-36736
CVSS v3
Risk Factor: Medium
Base Score: 4.4
Temporal Score: 3.9
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:microsoft:identity_linux_broker
Required KB Items: Host/local_checks_enabled, Host/nix/packages
Exploit Ease: No known exploits are available
Patch Publication Date: 9/12/2023
Vulnerability Publication Date: 9/12/2023
Reference Information
CVE: CVE-2023-36736