CVE-2023-40652
CVSS 3.1 Score 4.4 of 10 (medium)
Details
Published Oct 8, 2023
Updated: Oct 11, 2023
CWE ID 787
Summary
CVE-2023-40652 is a newly identified vulnerability affecting jpg drivers. The issue stems from a lack of adequate input validation, which creates an opportunity for out-of-bounds writing. An attacker who successfully exploits this vulnerability can cause local denial of service, with the requirement of System execution privileges to execute the attack. This flaw poses a significant risk to affected systems and necessitates immediate remediation efforts.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Android