CVE-2023-48316

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 5, 2023

Updated: Dec 8, 2023

CWE ID 787

CWE ID 825

Summary

CVE-2023-48316 is a critical vulnerability affecting Azure RTOS NetX Duo, a TCP/IP network stack for deeply embedded real-time and IoT applications. The issue stems from memory overflow vulnerabilities that an attacker can exploit to execute remote code. These vulnerabilities are found in processes and functions related to SNMP, SMTP, FTP, and DTLS in RTOS v6.2.1 and below. The recommended mitigation is to upgrade to NetX Duo release 6.3.0. No known workarounds exist for this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tZ7ltw
https://www.cve.org/CVERecord?id=CVE-2023-48316
https://nvd.nist.gov/vuln/detail/CVE-2023-48316

Back to Vulnerability Database

CVE-2023-48316

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations