CVE-2023-46615

CVSS 3.1 Score 5.4 of 10 (medium)

Scope changed

Attack Complexity high

Confidentiality low

Integrity low

Availability none

Privileges Required none

Details

Published Feb 12, 2024

CWE ID 502

Summary

CVE-2023-46615 is a deserialization vulnerability affecting KD Coming Soon, a software component from n/a to version 1.7. An attacker could exploit this issue by sending untrusted data to be deserialized, potentially leading to arbitrary code execution or denial of service. This vulnerability poses a serious risk if not addressed promptly. Users are advised to update to the latest version of KD Coming Soon to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tIwVEg
https://www.cve.org/CVERecord?id=CVE-2023-46615
https://nvd.nist.gov/vuln/detail/CVE-2023-46615

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Submarine Cables Face Increasing Threats Amid Geopolitical Tensions and Limited Repair Capacity

US Violent Extremists Likely Shifting Focus to Targeted Physical Threats in 2025

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Know What Matters

For Customers

For Partners

CVE-2023-46615

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations