CVE-2023-49558

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 3, 2024

Updated: Jan 9, 2024

Summary

CVE-2023-49558 is a newly discovered vulnerability affecting YASM 1.3.0.86.g9def. This issue permits a remote attacker to trigger a denial of service (DoS) condition. The vulnerability is located in the expand_mmac_params function found in the modules/preprocs/nasm/nasm-pp.c component. By exploiting this weakness, an attacker can cause the system to become unresponsive, resulting in a disruption of critical services. It is essential for users to apply the necessary patches to mitigate the risk of a successful attack.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tlE6JE
https://www.cve.org/CVERecord?id=CVE-2023-49558
https://nvd.nist.gov/vuln/detail/CVE-2023-49558

Back to Vulnerability Database

CVE-2023-49558

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations