(Vulnerabilities) NetworkWatcher

Question

Question :

Do we need to take action regarding these vulnerabilities, or will Microsoft handle the solutions?

Vulnerability from Nessus Scanner.

Findings : 202053 - Microsoft Azure Network Watcher VM Extension < 1.4.3320.1 Elevation of Privilege (CVE-2024-35261)

Synopsis

An application installed on the remote Windows host is affected by an elevation of privilege vulnerability.

Description

The version of Microsoft Azure Network Watcher VM Extension installed on the remote Windows host is prior to 1.4.3320.1. It is, therefore, affected by an unspecified elevation of privilege vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Upgrade to Microsoft Azure Network Watcher version 1.4.3320.1 or later.

Answer 1

@Yoong Mun Lok ,

Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.

I understand that you are using a 3rd party which detects that the Network Watcher Agent virtual machine extension for Windows is not up to date.

I am not sure what the vulnerability means, seems to be something related with the 3rd party itself.

• However, to get the latest version follow Update Azure Network Watcher extension to the latest version.
• This mentions how you can do this in both CLI and Powershell.

Additionally, If you have auto-upgrade set to true for the Network Watcher extension, reboot your VM installation to the latest extension.

Hope this helps.

Please let us know if we can be of any further assistance here.

Thanks,

Kapil

---

Please Accept an answer if correct.

Original posters help the community find answers faster by identifying the correct answer.