(Vulnerabilities) NetworkWatcher

Yoong Mun Lok 0 Reputation points
2024-07-24T07:34:26.18+00:00

Question :

Do we need to take action regarding these vulnerabilities, or will Microsoft handle the solutions?

Vulnerability from Nessus Scanner.

Findings : 202053 - Microsoft Azure Network Watcher VM Extension < 1.4.3320.1 Elevation of Privilege (CVE-2024-35261)

Synopsis

An application installed on the remote Windows host is affected by an elevation of privilege vulnerability.

Description

The version of Microsoft Azure Network Watcher VM Extension installed on the remote Windows host is prior to 1.4.3320.1. It is, therefore, affected by an unspecified elevation of privilege vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Upgrade to Microsoft Azure Network Watcher version 1.4.3320.1 or later.

Azure Network Watcher
Azure Network Watcher
An Azure service that is used to monitor, diagnose, and gain insights into network performance and health.
177 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. KapilAnanth-MSFT 48,081 Reputation points Microsoft Employee
    2024-07-24T12:26:43.4966667+00:00

    @Yoong Mun Lok ,

    Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.

    I understand that you are using a 3rd party which detects that the Network Watcher Agent virtual machine extension for Windows is not up to date.

    I am not sure what the vulnerability means, seems to be something related with the 3rd party itself.

    Additionally, If you have auto-upgrade set to true for the Network Watcher extension, reboot your VM installation to the latest extension.

    Hope this helps.

    Please let us know if we can be of any further assistance here.

    Thanks,

    Kapil


    Please Accept an answer if correct.

    Original posters help the community find answers faster by identifying the correct answer.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.