CVE-2023-42726

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Dec 4, 2023
Updated: Dec 7, 2023
CWE ID 125

Summary

CVE-2023-42726 is a vulnerability affecting TeleService that involves a missing bounds check, leading to a potential out-of-bounds read. This issue could result in local denial of service with the requirement for System execution privileges. An attacker can exploit this flaw to cause the system to crash or execute arbitrary code, potentially causing significant damage. The vulnerability is particularly serious due to the high-level privileges required for its exploitation. TeleService users are strongly advised to apply the available patch as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share