CVE-2023-42728

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 4, 2023

Updated: Dec 7, 2023

CWE ID 125

Summary

CVE-2023-42728 is a vulnerability affecting phasecheckserver that involves a missing bounds check, resulting in a possible out-of-bounds read. This issue can lead to local denial of service without requiring any additional execution privileges. An attacker can exploit this vulnerability to cause the server to crash or become unresponsive, impacting its availability. This is a critical issue that requires immediate attention and patching to prevent potential disruptions.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sq_-xe
https://www.cve.org/CVERecord?id=CVE-2023-42728
https://nvd.nist.gov/vuln/detail/CVE-2023-42728

Back to Vulnerability Database