CVE-2023-4518

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 1, 2023

Updated: Dec 6, 2023

CWE ID 922

Summary

CVE-2023-4518 is a vulnerability affecting the input validation of GOOSE messages in certain IEDs. Out-of-range values in these messages can trigger a device reboot. For an attacker to exploit this vulnerability, they must configure the goose receiving blocks. This issue could potentially lead to denial-of-service attacks or other unwanted consequences.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM i Access Client Solutions

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s5PNR_
https://www.cve.org/CVERecord?id=CVE-2023-4518
https://nvd.nist.gov/vuln/detail/CVE-2023-4518

Back to Vulnerability Database