CVE-2023-36328

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 1, 2023

Updated: Mar 7, 2024

CWE ID 190

Summary

CVE-2023-36328 is an integer overflow vulnerability identified in the mp_grow function of libtommath's libtom library, prior to commit beba892bc0d4e4ded4d667ab1d2a94f4d75109a9. This issue enables attackers to execute arbitrary code and instigate a denial of service (DoS) incident by exploiting the integer overflow condition.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Fedora Operating System

Affected Vendors

Fedora Project

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rpqAnI
https://www.cve.org/CVERecord?id=CVE-2023-36328
https://nvd.nist.gov/vuln/detail/CVE-2023-36328

Back to Vulnerability Database