CVE-2023-22666

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 8, 2023

Updated: Apr 12, 2024

CWE ID 787

CWE ID 190

Summary

CVE-2023-22666 is a newly identified memory corruption vulnerability that affects the handling of specific amrwbplus audio clips. When playing such clips with modified content, the software involved experiences memory corruption, which could be exploited by attackers to execute arbitrary code or cause a denial-of-service condition. This vulnerability poses a significant risk to systems that support the playback of amrwbplus audio files and have not been patched against this issue. Users are strongly advised to update their affected software as soon as a patch becomes available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database