CVE-2023-36745 is a vulnerability in Microsoft Exchange Server that allows remote code execution. The vulnerability was discovered on September 13, 2023.
The vulnerability can be exploited by:
- Executing code in assemblies loaded from remote locations
- Calling the LoadFrom method
The severity of the vulnerability is:
- AV:L/AC:M/Au:N/C:P/I:P/A:P
Starting with. NET Framework 4, the ability to execute code in assemblies loaded from remote locations is disabled by default. The call to the LoadFrom method throws a FileLoadException
What do you think?
It is nice to know your opinion. Leave a comment.