CVE-2023-32824
CVSS 3.1 Score 6.7 of 10 (medium)
Details
Published Oct 2, 2023
Updated: Oct 3, 2023
CWE ID 415
Summary
CVE-2023-32824 is a vulnerability affecting the rpm package manager. It involves an improper locking issue that can result in a double free, leading to local privilege escalation. The exploitation of this vulnerability does not require user interaction, making it potentially dangerous for systems with System execution privileges. Patch ID ALPS07912966 and Issue ID ALPS07912961 have been issued to address this issue. This vulnerability highlights the importance of keeping software up-to-date and maintaining strong security practices.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Android