Share via

Error trying to solve CVE-2023-36049

Anonymous
2025-01-07T21:43:33+00:00

Hi there,

In a recent vulnerability scan, some Windows devices were reported with the CVE-2023-36049 (https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36049). The devices are joined in a domain controller and updates are deployed for WSUS. We review that WSUS send the last security updates, so I cannot imagine a device without updates from 2013. However, I asked the administrator and there are no recent updates to release. Finally, I tried manually installing the update on one laptop (Catálogo de Microsoft Update), which showed the following error: “The update is not applicable to your computer”. I assume the update was released for Windows 23H2 versions and the current version are 2024H2.

I found in the regedit (because it is not shown as an app installed) that the .NET version is 4.8.09032 (found in \HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full).

How may I solve this vulnerability?

Thanks.

***moved from Windows / Windows 11 / Windows update***

Windows Windows Client for IT Pros Devices and deployment Set up, install, or upgrade

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question. To protect privacy, user profiles for migrated questions are anonymized.

0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2025-01-09T00:18:32+00:00

    Hello,大卫·福雷罗·阿尔达纳1

    It is recommended that you install the latest December patch KB5048667 for Win11 24h2 to fix this vulnerability, you can search for this KB number in the Microsoft update catalog to download it.

    Best Regards,

    Chengxili

    0 comments
  2. Anonymous
    2025-01-09T00:59:39+00:00

    Hi Chengxili,

    First of all, thanks for taking the time for this answer.

    The update mentioned was installed a month ago and the vulnerability scanner still reports this vulnerability. I asked the scanner provider, and they told me that the vulnerability was discovered for the following registry:

    \HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall{6E4984A9-4321-4D96-861F-D03578E68C8B}

    ![](https://filestore.community.support.microsoft.com/api/images/7967614d-3e67-4395-a720-b51cbb28effd?upload=true&fud_access=hC1SxZhn7m%2FZQJkOIiOVstu10yTQgXS4A%2FDBzZTg8nbaCgIogkrcDydMeI5Y4za2dOqDdWtsG2JNS3E35V60i9TiGHR7STMpJHheeXuDvO8nwjUlqCBHhJ0NDvuYN7OSWcJG0gBsXQa%2FVO0j175ZVv6Mo1Q%2FGXcVNIh%2F54Ys9jcI%2F0qMXtyCgK07HjCTg6vSsClbc%2FXdLWeS5NDYJTesmqyyj2qIWW9gZjtr21FtZl5NsKwoohgfJ%2F3cEfEU16oZ3KERRswAvizhCMhUyO7xnqLAL%2Ffz%2FSqkUfjQjQ6BS9kTLMV0hIVmcSA4vQf9Ds7ZdmvclvV2O9pOKI2mVVNV9bk3aVh4zuxX02olXjDk2JpOCy9n4WeOmtCksTuvb5yb4u8OTvezCBY68AILCe7ZTMVFCCEPXydhN9cths0Sd9k%3D)

    I didn't find this path in any documentation, which made it difficult to find the vulnerable version. I don't know how this .NET version was installed, or if this was installed, because the discrepancy between the info shown in the previous image and the version shown in \HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\NET Framework Setup\NDP\v4\Full

    ![](https://filestore.community.support.microsoft.com/api/images/d135395f-2f35-4943-8872-de3bcad0ce6d?upload=true&fud_access=hC1SxZhn7m%2FZQJkOIiOVstu10yTQgXS4A%2FDBzZTg8nbaCgIogkrcDydMeI5Y4za2dOqDdWtsG2JNS3E35V60i9TiGHR7STMpJHheeXuDvO8nwjUlqCBHhJ0NDvuYN7OSWcJG0gBsXQa%2FVO0j175ZVv6Mo1Q%2FGXcVNIh%2F54Ys9jcI%2F0qMXtyCgK07HjCTg6vSsClbc%2FXdLWeS5NDYJTesmqyyj2qIWW9gZjtr21FtZl7IAlTpiSzgK2Iq%2FmDlAW4SaQB8Yz6XhDsNhrf8qRJSRSGz5Uid3VB1Zmg9xnj1IaRTSr9N%2FgBGJAUGa3HWBwRUVXxxjxsueTIBfBszPW%2F%2B2fs8gqujd2ifgeidvtJA5N7qe5aIuJVczTUm3p8%2FTMWCNfh3%2F9cM6rovs9fJwm6V%2F2l49Kli8ZJtF6Dq%2FG6%2FaT8%3D)

    Any advice?

    Thanks in advance.

    0 comments