CVE-2023-40250

CVSS 3.1 Score 8.8 of 10 (high)

Attack Complexity low
Confidentiality high
Integrity high
Availability high
Scope unchanged
Privileges Required none

Details

Published Jan 12, 2024
Updated: Jan 18, 2024
CWE ID 120

Summary

CVE-2023-40250 is a buffer overflow vulnerability affecting Hancom HCell version 12.0.0.893 on Windows. The issue arises when the software fails to check the size of input data before copying it into a buffer, leading to an overflow condition. This classic buffer overflow weakness can be exploited by attackers to execute arbitrary code or cause the application to crash, potentially leading to serious security implications.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share