CVE-2023-21638

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 4, 2023

Updated: Apr 12, 2024

CWE ID 704

Summary

CVE-2023-21638 is a memory corruption vulnerability affecting Video APIs. This issue arises when calling APIs with an instance ID different from the one initially received during initialization. This disparity can lead to unintended memory manipulation, potentially resulting in code execution or denial-of-service attacks. Attackers could exploit this vulnerability to gain elevated privileges or cause the system to crash, posing a significant security risk to affected applications.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r26mt8
https://www.cve.org/CVERecord?id=CVE-2023-21638
https://nvd.nist.gov/vuln/detail/CVE-2023-21638

Back to Vulnerability Database

CVE-2023-21638

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations