CVE-2023-40652

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Oct 8, 2023
Updated: Oct 11, 2023
CWE ID 787

Summary

CVE-2023-40652 is a newly identified vulnerability affecting jpg drivers. The issue stems from a lack of adequate input validation, which creates an opportunity for out-of-bounds writing. An attacker who successfully exploits this vulnerability can cause local denial of service, with the requirement of System execution privileges to execute the attack. This flaw poses a significant risk to affected systems and necessitates immediate remediation efforts.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share