CVE-2023-33089

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 5, 2023

Updated: Apr 12, 2024

CWE ID 476

Summary

CVE-2023-33089 is a transient Denial of Service (DoS) vulnerability affecting WLAN vdev parsing. The issue occurs when the system processes a NULL buffer during this parsing process, resulting in an unintended response. An attacker can potentially exploit this vulnerability by crafting specially malformed packets to trigger the DoS condition, causing service disruption. The vulnerability underscores the importance of secure network infrastructure, as WLANs are increasingly used for critical enterprise applications. System administrators are urged to update their affected components as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database