CVE-2023-40644

Summary

CVE-2023-40644 is a new vulnerability affecting the Messaging system. This issue involves a missing permission check, which could potentially allow unauthorized access to local information without the need for additional execution privileges. This vulnerability poses a risk for information disclosure and should be addressed promptly by system administrators to prevent potential exploitation. Users are encouraged to update their Messaging software to the latest version to mitigate this risk. The exact consequences of this vulnerability and the specific information that could be disclosed vary depending on the configuration and use case of the affected Messaging system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.