CVE-2023-20787

CVSS 3.1 Score 6.4 of 10 (medium)

Details

Published Aug 7, 2023
Updated: Aug 9, 2023
CWE ID 416
CWE ID 367

Summary

CVE-2023-20787 is a newly disclosed vulnerability affecting thermal software. It involves a race condition, leading to a use-after-free issue. This flaw could be exploited by attackers to gain local escalation of privileges, even without user interaction. The impact is significant as it requires System execution privileges. The patch for this issue is identified as ALPS07648734.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share