CVE-2023-40012

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 9, 2023

Updated: Aug 16, 2023

CWE ID 347

CWE ID 325

Summary

CVE-2023-40012 is a vulnerability affecting the uthenticode library, which is used for partially verifying Authenticode digital signatures. Prior to version 2.x, uthenticode failed to check Extended Key Usages (EKUs) in certificates, allowing a malicious user to produce a seemingly valid PE file using an unauthorized X.509 certificate for code signing. This oversight, which does not involve full-chain validation, can result in the execution of malicious code. The 2.0.0 release series addresses this issue by adding EKU checks, and there are currently no known workarounds for this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Vendors

Trail of Bits

Advisories, Assessments, and Mitigations

Back to Vulnerability Database