CVE-2023-33119

CVSS 3.1 Score 8.4 of 10 (high)

Details

Published May 6, 2024
CWE ID 367

Summary

CVE-2023-33119 is a newly identified memory corruption vulnerability. Affecting virtual machine (VM) loading processes, this issue arises when a signed VM image is not cache-coherent in the processor. When loading such an image, memory corruption occurs, potentially allowing an attacker to execute malicious code with elevated privileges. This can lead to significant security risks, including the compromise of the host system and the data it protects. It is crucial for organizations to apply the necessary patches as soon as they become available to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share