CVE-2023-34982

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Nov 15, 2023

Updated: Dec 8, 2023

CWE ID 610

CWE ID 73

Summary

CVE-2023-34982 is an external control vulnerability that, if exploited, grants a local OS-authenticated user with standard privileges the ability to delete files with System privilege on the affected machine. By deleting essential system files, this vulnerability can cause a denial of service. The impact of this issue can result in significant downtime and disrupt normal operations. It's essential that affected organizations apply the necessary patches to mitigate this risk and prevent potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

AVEVA Edge

Affected Vendors

Aveva Group

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rzlEoD
https://www.cve.org/CVERecord?id=CVE-2023-34982
https://nvd.nist.gov/vuln/detail/CVE-2023-34982

Back to Vulnerability Database