CVE-2023-48631

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 14, 2023

Updated: Dec 18, 2023

CWE ID 1333

CWE ID 20

Summary

CVE-2023-48631 is a vulnerability affecting versions 4.3.1 and older of the popular Adobe CSS Tools package. This issue stems from a lack of sufficient input validation, rendering the software susceptible to denial-of-service (DoS) attacks. By providing maliciously crafted CSS input, attackers can cause the software to fail while processing the data, resulting in an unintended halt of service. Organizations utilizing this software are advised to install updates and apply proper input validation techniques to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tcTTZW
https://www.cve.org/CVERecord?id=CVE-2023-48631
https://nvd.nist.gov/vuln/detail/CVE-2023-48631

Back to Vulnerability Database

CVE-2023-48631

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations