What the vulnerability does
01Description
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2023-35367
CRITICAL
CVE-2023-35367: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVSS base score
9.8/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Key dates
02Disclosure timeline
July 11, 2023
CVE published
January 1, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2023-46285
CVE-2022-20797 Cisco Secure Network Analytics Remote Code Execution Vulnerability
CVE-2018-15430 Cisco Expressway Series and Cisco TelePresence Video Communication Server Remote Code Execution Vulnerability
CVE-2023-33099 Improper Input Validation in Multi-Mode Call Processor
CVE-2023-35944 Envoy vulnerable to incorrect handling of HTTP requests and responses with mixed case schemes
