CVE-2023-40711

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 20, 2023
Updated: Aug 25, 2023
CWE ID 787

Summary

CVE-2023-40711: A denial-of-service vulnerability has been discovered in Veilid before version 0.1.9. The issue lies in the lack of size checking for uncompressed data during decompression, allowing remote attackers to cause an out-of-memory abort by delivering specially crafted packet data. This vulnerability was exploited in the wild in August 2023.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share