CVE-2023-33028

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 3, 2023

Updated: Apr 12, 2024

CWE ID 787

CWE ID 121

Summary

CVE-2023-33028 is a newly identified memory corruption vulnerability that affects certain WLAN firmware. This issue arises during the process of copying pmk cache data in memory, leading to potential unintended modifications. An attacker could exploit this flaw to execute arbitrary code or cause a denial-of-service condition. The vulnerability poses a significant risk to wireless networks, and it is recommended that affected organizations apply the necessary patches as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s25ZTh
https://www.cve.org/CVERecord?id=CVE-2023-33028
https://nvd.nist.gov/vuln/detail/CVE-2023-33028

Back to Vulnerability Database

CVE-2023-33028

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations