CVE-2023-32824

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Oct 2, 2023
Updated: Oct 3, 2023
CWE ID 415

Summary

CVE-2023-32824 is a vulnerability affecting the rpm package manager. It involves an improper locking issue that can result in a double free, leading to local privilege escalation. The exploitation of this vulnerability does not require user interaction, making it potentially dangerous for systems with System execution privileges. Patch ID ALPS07912966 and Issue ID ALPS07912961 have been issued to address this issue. This vulnerability highlights the importance of keeping software up-to-date and maintaining strong security practices.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share