CVE-2023-48349

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 18, 2024

Updated: Jan 19, 2024

CWE ID 787

Summary

CVE-2023-48349 is a cybersecurity vulnerability affecting video decoders. This issue stems from a missing bounds check, resulting in a possible out-of-bounds write. The consequence of this vulnerability is a local denial-of-service attack, meaning an adversary can exploit it to cause service disruption without requiring additional execution privileges.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/taqhDV
https://www.cve.org/CVERecord?id=CVE-2023-48349
https://nvd.nist.gov/vuln/detail/CVE-2023-48349

Back to Vulnerability Database