CVE-2023-48945

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 29, 2023
Updated: Dec 5, 2023
CWE ID 787

Summary

CVE-2023-48945 is a newly discovered vulnerability affecting openlink virtuoso-opensource version 7.2.11. This issue involves a stack overflow, which can be triggered by attackers through the use of crafted SQL statements. By exploiting this vulnerability, they can cause a Denial of Service (DoS) condition, disrupting the normal operation of the affected system. This issue poses a significant risk, particularly for organizations relying on openlink virtuoso-opensource for their data management needs, as it can lead to system downtime and potential data loss. It is recommended that users of this software upgrade to a patched version as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share