CVE-2023-3537311.07.2023, 18:15Mono Authenticode Validation Spoofing VulnerabilityEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST5.3 MEDIUMNETWORKHIGHLOWCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:NmicrosoftCNA5.3 MEDIUMCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:CCISA-ADPADP------CVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 67%VendorProductVersionmicrosoftmono6.12.0 ≤𝑥< 6.12.0.200𝑥= Vulnerable software versionsCommon Weakness EnumerationCWE-347 - Improper Verification of Cryptographic SignatureThe software does not verify, or incorrectly verifies, the cryptographic signature for data.Referenceshttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35373https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35373