CVE-2023-39541

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Feb 20, 2024

CWE ID 126

Summary

CVE-2023-39541 is a denial-of-service vulnerability affecting the ICMP and ICMPv6 parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. An attacker can exploit this flaw by sending a specially crafted network packet, resulting in an out-of-bounds read. Consequentially, the targeted system may become unresponsive or crash due to the denial-of-service condition. This vulnerability poses a risk as it can be triggered through IPv6 ICMPv6 packets.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sNsVX5
https://www.cve.org/CVERecord?id=CVE-2023-39541
https://nvd.nist.gov/vuln/detail/CVE-2023-39541

Back to Vulnerability Database

CVE-2023-39541

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations