CVE-2023-39010

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 28, 2023

Updated: Oct 3, 2023

CWE ID 94

Summary

CVE-2023-39010 is a newly disclosed vulnerability affecting BoofCV 0.42, an open-source computer vision library. The issue lies in the boofcv.io.calibration.CalibrationIO.load component, which can be exploited through crafted camera calibration files. This vulnerability enables code injection, posing a significant security risk to users who load the malicious files. The exact nature of the exploit and potential impact on systems have yet to be fully assessed. Users are encouraged to update to the latest version of BoofCV or take other protective measures until a patch is available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sG63pe
https://www.cve.org/CVERecord?id=CVE-2023-39010
https://nvd.nist.gov/vuln/detail/CVE-2023-39010

Back to Vulnerability Database

CVE-2023-39010

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations