CVE-2023-41776

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 3, 2024

Updated: Jan 9, 2024

CWE ID 732

CWE ID 269

Summary

CVE-2023-41776 is a local privilege escalation vulnerability affecting ZTE's ZXCLOUD iRAI. A regular user can exploit this vulnerability by creating a fake process, thereby escalating their privileges to higher levels within the system. This issue poses a significant risk to the security of affected installations, and it is recommended that users apply the available patch as soon as possible to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

ZTE Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/shulxg
https://www.cve.org/CVERecord?id=CVE-2023-41776
https://nvd.nist.gov/vuln/detail/CVE-2023-41776

Back to Vulnerability Database

CVE-2023-41776

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations