CVE-2023-39914

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 13, 2023

Updated: Sep 15, 2023

CWE ID 228

Summary

CVE-2023-39914 is a vulnerability affecting NLnet Labs' bcder library up to version 0.7.2. Instead of rejecting invalid input data during decoding, the library panics, potentially impacting both the decoding process and the accessing of content utilizing delayed decoding. This issue may result in denial of service or unintended data access. Users are advised to update to a patched version as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

NLnet Labs

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sQHfhn
https://www.cve.org/CVERecord?id=CVE-2023-39914
https://nvd.nist.gov/vuln/detail/CVE-2023-39914

Back to Vulnerability Database

CVE-2023-39914

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations