CVE-2023-35630

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Dec 12, 2023

Updated: May 29, 2024

CWE ID 122

Summary

CVE-2023-35630 is a newly disclosed vulnerability affecting Internet Connection Sharing (ICS) services. This issue permits an unauthenticated attacker to execute arbitrary code remotely on affected systems. Successful exploitation can lead to significant security implications, including unauthorized system access and data theft. The vulnerability exists due to improper input validation, allowing attackers to send specially crafted packets to trigger the code execution. It is strongly recommended that users apply the available patches to mitigate this risk promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tyB25n
https://www.cve.org/CVERecord?id=CVE-2023-35630
https://nvd.nist.gov/vuln/detail/CVE-2023-35630

Back to Vulnerability Database

CVE-2023-35630

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations