CVE-2023-32837

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 6, 2023

Updated: Nov 14, 2023

CWE ID 787

Summary

CVE-2023-32837 represents a vulnerability in video software, where a missing bounds check allows for an out-of-bounds write. This issue can result in local privilege escalation without requiring additional execution privileges. Notably, user interaction is not necessary for exploitation. The patch for this vulnerability is identified as ALPS08235273, and the internal issue reference is ALPS08250357.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tSkLzi
https://www.cve.org/CVERecord?id=CVE-2023-32837
https://nvd.nist.gov/vuln/detail/CVE-2023-32837

Back to Vulnerability Database