CVE-2023-21255

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 13, 2023

Updated: Jan 19, 2024

CWE ID 787

CWE ID 416

Summary

CVE-2023-21255 is a vulnerability that affects multiple functions of binder.c. It is categorized as a use after free vulnerability, which can result in memory corruption. This vulnerability has a high severity level and requires low privileges to exploit. User interaction is not necessary for exploitation. The affected products include 'jsNHiU' and 'U8qqTE'. Organizations should take immediate action to remediate this vulnerability to prevent local escalation of privilege and potential compromise of confidentiality and integrity.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r4vIY8
https://www.cve.org/CVERecord?id=CVE-2023-21255
https://nvd.nist.gov/vuln/detail/CVE-2023-21255

Back to Vulnerability Database

CVE-2023-21255

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations