CVE-2023-36659

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 15, 2023

Updated: Sep 19, 2023

CWE ID 120

Summary

CVE-2023-36659 is a newly disclosed vulnerability affecting OPSWAT MetaDefender KIOSK version 4.6.1.9996. This issue arises from the software's inability to effectively process long inputs, rendering it susceptible to denial-of-service (DoS) attacks. Malicious actors can exploit this weakness by sending oversized data packets to the targeted system, causing a loss of communication between the MetaDefender KIOSK and other connected components. The result is a denial of service, preventing legitimate users from accessing critical functionalities. This vulnerability poses a significant risk, as it can potentially disrupt essential operations in organizations relying on the OPSWAT MetaDefender KIOSK solution for security and compliance.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database