CVE-2023-28560

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 5, 2023

Updated: Apr 12, 2024

CWE ID 787

CWE ID 120

Summary

CVE-2023-28560 refers to a memory corruption vulnerability impacting the WLAN HAL component. This issue arises during the processing of devIndex from untrusted WMI payloads. An attacker could potentially exploit this flaw to execute arbitrary code on affected systems, leading to potential security compromises. The WLAN HAL, which is a critical part of Wi-Fi functionality, is put at risk by this vulnerability, necessitating prompt patching.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sjpgxE
https://www.cve.org/CVERecord?id=CVE-2023-28560
https://nvd.nist.gov/vuln/detail/CVE-2023-28560

Back to Vulnerability Database

CVE-2023-28560

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations