CVE-2023-36364

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jun 22, 2023

Updated: Jun 28, 2023

Summary

CVE-2023-36364 is a newly discovered vulnerability affecting MonetDB Server versions 11.45.17 and 11.46.0. This issue lies in the rel_deps component and enables attackers to initiate a Denial of Service (DoS) attack through carefully crafted SQL statements. By exploiting this flaw, malicious actors can cause MonetDB Server to crash or become unresponsive, resulting in a service disruption. The exact cause of the vulnerability is not disclosed, but it is recommended that users upgrade to a patched version of MonetDB Server to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MonetDB

Affected Vendors

MonetDB

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rvSbSc
https://www.cve.org/CVERecord?id=CVE-2023-36364
https://nvd.nist.gov/vuln/detail/CVE-2023-36364

Back to Vulnerability Database