CVE-2023-48346

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 18, 2024

Updated: Jan 19, 2024

Summary

CVE-2023-48346 is a newly disclosed vulnerability affecting video decoders. The issue involves a lack of adequate input validation, making it possible for attackers to cause local denial of service. This vulnerability does not grant any additional execution privileges, but can still disrupt services and impact system functionality. Attackers may exploit this flaw by feeding the decoder with malformed input data, resulting in unexpected behavior or service interruption. This vulnerability underscores the importance of robust input validation for security-critical components.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/taqoTt
https://www.cve.org/CVERecord?id=CVE-2023-48346
https://nvd.nist.gov/vuln/detail/CVE-2023-48346

Back to Vulnerability Database