March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – Multiple Microsoft Windows Kernel Vulnerabilities
November 16, 2023Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
November 16, 2023Rewterz Threat Advisory – Multiple Microsoft Windows Kernel Vulnerabilities
November 16, 2023Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
November 16, 2023
Severity
Medium
Analysis Summary
CVE-2023-36018 CVSS:7.8
Microsoft Visual Studio Code Jupyter Extension could allow a remote attacker to conduct spoofing attacks.
CVE-2023-38151 CVSS:8.8
Microsoft Host Integration Server could allow a remote attacker to execute arbitrary code on the system. An attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2023-36042 CVSS:6.2
Microsoft Visual Studio is vulnerable to a denial of service. By sending a specially crafted request, a local attacker could exploit this vulnerability to cause a denial of service.
CVE-2023-36007 CVSS:7.6
Microsoft Send Customer Voice survey from Dynamics 365 App could allow a remote authenticated attacker to conduct spoofing attacks.
Impact
- Denial of Service
- Code Execution
- Gain Access
Indicators Of Compromise
CVE
- CVE-2023-36018
- CVE-2023-38151
- CVE-2023-36042
- CVE-2023-36007
Affected Vendors
Microsoft
Affected Products
- Microsoft Jupyter Extension for Visual Studio Code
- Microsoft Host Integration Server 2020
- Microsoft OLE DB Provider for DB2 V7
- Microsoft Visual Studio 2022 17.2
- Microsoft Visual Studio 2022 17.4
- Microsoft Visual Studio 2022 17.6
- Microsoft Visual Studio 2022 17.7
- Microsoft Send Customer Voice survey from Dynamics 365 App
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.