CVE-2023-21278

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Aug 14, 2023
Updated: Aug 21, 2023

Summary

CVE-2023-21278 is a vulnerability that affects multiple products, including 'sYyJEm', 'tzDcWF', and 'sYyJE8'. It is caused by a logic error in the code, which can obscure the microphone privacy indicator in various locations. This vulnerability has the potential to allow local escalation of privilege without requiring additional execution privileges or user interaction. The risk score associated with this vulnerability is 10, indicating a high level of danger. To remediate this issue, organizations should address the logic error in the code to ensure that the microphone privacy indicator functions properly and cannot be obscured.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share