CVE-2023-35316

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jul 11, 2023

Updated: May 29, 2024

CWE ID 125

Summary

CVE-2023-35316 is a Remote Procedure Call (RPC) information disclosure vulnerability. An attacker can exploit this weakness by sending specially crafted RPC messages to a target system, causing it to reveal sensitive information. This vulnerability poses a significant risk, as the exposed data can include system configuration details and internal data structures. An attacker could use this information to launch further attacks or gain unauthorized access to the affected system. It is strongly recommended that affected organizations apply the available patches to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzlEvh
https://www.cve.org/CVERecord?id=CVE-2023-35316
https://nvd.nist.gov/vuln/detail/CVE-2023-35316

Back to Vulnerability Database

CVE-2023-35316

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations