CVE-2023-30732

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Oct 4, 2023
Updated: Nov 7, 2023

Summary

CVE-2023-30732 is a vulnerability that affects systems prior to the SMR Oct-2023 Release 1. This issue involves improper access control in a system property, which enables a local attacker to retrieve the CPU serial number of the affected system. This information could potentially be used for malicious purposes, such as identifying and targeting specific systems or creating unique signatures for targeted attacks. Organizations using vulnerable systems are advised to apply the necessary updates as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share