CVE-2023-39201

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Sep 12, 2023

Updated: Sep 16, 2023

CWE ID 426

Summary

CVE-2023-39201 is a newly disclosed cybersecurity vulnerability affecting CleanZoom before the file date 07/24/2023. This issue involves an untrusted search path that can be exploited by a privileged user to escalate their privileges locally. By manipulating the file path, an attacker could potentially gain elevated access to the system, posing a significant risk to security. This vulnerability underscores the importance of keeping software up to date with the latest security patches. Users of CleanZoom are urged to apply the necessary updates as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sHVPC0
https://www.cve.org/CVERecord?id=CVE-2023-39201
https://nvd.nist.gov/vuln/detail/CVE-2023-39201

Back to Vulnerability Database

CVE-2023-39201

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations