CVE-2023-32042

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 11, 2023

Updated: May 29, 2024

CWE ID 908

Summary

CVE-2023-32042 denotes a newly discovered Information Disclosure vulnerability affecting OLE Automation. Attackers can exploit this flaw to gain unauthorized access to sensitive information stored in memory, potentially leading to significant data leakage. The vulnerability arises due to an inadequately checked input during OLE Automation object creation, making it crucial for organizations to apply the available patches promptly and elevate their security posture.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r9RRAD
https://www.cve.org/CVERecord?id=CVE-2023-32042
https://nvd.nist.gov/vuln/detail/CVE-2023-32042

Back to Vulnerability Database

CVE-2023-32042

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations