CVE-2023-48025

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Nov 17, 2023

Updated: Nov 25, 2023

CWE ID 125

Summary

CVE-2023-48025 is a newly disclosed vulnerability affecting Liblisp before commit 4c65969. This issue involves an out-of-bounds-read vulnerability in the unsigned get_length function located at eval.c. An attacker can exploit this flaw to read memory outside of the intended boundaries, potentially resulting in the leakage of sensitive information or system instability. The impact of this vulnerability could vary depending on the specific application using Liblisp and the attacker's intentions. Users are advised to apply the available patch or upgrade to a version not affected by this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tYopw2
https://www.cve.org/CVERecord?id=CVE-2023-48025
https://nvd.nist.gov/vuln/detail/CVE-2023-48025

Back to Vulnerability Database

CVE-2023-48025

CVSS 3.1 Score 8.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations