CVE-2023-33055

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 7, 2023

Updated: Apr 12, 2024

CWE ID 787

CWE ID 120

Summary

CVE-2023-33055 refers to a memory corruption vulnerability discovered in the Audio driver component of ADSP (Advanced Digital Signal Processing) systems. The issue arises when invoking a callback function in the driver, leading to unintended memory manipulation. This vulnerability could potentially be exploited by attackers to execute arbitrary code, resulting in serious security implications. System administrators are strongly advised to apply the available patch or update to mitigate this risk. Failure to address this vulnerability could lead to unauthorized system access and data breaches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tSwtY9
https://www.cve.org/CVERecord?id=CVE-2023-33055
https://nvd.nist.gov/vuln/detail/CVE-2023-33055

Back to Vulnerability Database

CVE-2023-33055

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations