cbcvebase.
CVE-2023-36899
published 2023-08-08

CVE-2023-36899: ASP.NET Elevation of Privilege Vulnerability ASP.NET Elevation of Privilege Vulnerability

high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
74.29%
99.4th percentile
ASP.NET Elevation of Privilege Vulnerability ASP.NET Elevation of Privilege Vulnerability

Affected

18 ranges
VendorProductVersion rangeFixed in
microsoftmicrosoft_net_framework_2.0_service_pack_2>= 2.0.0 < 2.0.50727.89742.0.50727.8974
microsoftmicrosoft_net_framework_3.5_and_4.6.2>= 4.7.0 < 10.0.10240.2010710.0.10240.20107
microsoftmicrosoft_net_framework_3.5_and_4.6.2_4.7_4.7.1_4.7.2>= 3.0.0.0 < 10.0.14393.616710.0.14393.6167
microsoftmicrosoft_net_framework_3.5_and_4.7.2>= 4.7.0 < 4.7.4057.054.7.4057.05
microsoftmicrosoft_net_framework_3.5_and_4.8>= 4.8.0 < 4.8.04654.064.8.04654.06
microsoftmicrosoft_net_framework_3.5_and_4.8.1>= 4.8.1 < 4.8.09176.014.8.09176.01
microsoftmicrosoft_net_framework_4.6.2>= 4.7.0 < 4.7.04057.054.7.04057.05
microsoftmicrosoft_net_framework_4.6.2_4.7_4.7.1_4.7.2>= 4.7.0 < 4.7.04057.054.7.04057.05
microsoftmicrosoft_net_framework_4.8>= 4.8.0 < 4.8.4654.064.8.4654.06
msrcmicrosoft_net_framework_2.0_service_pack_2
msrcmicrosoft_net_framework_3.5_and_4.6.2
msrcmicrosoft_net_framework_3.5_and_4.6.2_4.7_4.7.1_4.7.2
msrcmicrosoft_net_framework_3.5_and_4.7.2
msrcmicrosoft_net_framework_3.5_and_4.8
msrcmicrosoft_net_framework_3.5_and_4.8.1
msrcmicrosoft_net_framework_4.6.2
msrcmicrosoft_net_framework_4.6.2_4.7_4.7.1_4.7.2
msrcmicrosoft_net_framework_4.8

Detection & IOCsextracted from sources · hover to see the quote

  • The vulnerability requires a specific (accidental) misconfiguration of the target environment to be exploitable — focus detection on non-default ASP.NET configurations that may inadvertently expose the privilege escalation path.
  • Successful exploitation grants the attacker the privileges of the application's running user account — monitor for unexpected privilege use or actions performed under the ASP.NET application pool identity.
  • ·Exploitation is only possible when the target ASP.NET environment is misconfigured in a specific way; default configurations are not vulnerable.
  • ·As of the advisory publication, the vulnerability had not been publicly disclosed or actively exploited in the wild, reducing immediate threat urgency.

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvelistv58.8HIGH
vulncheck8.8HIGH
vendor_msrc8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.