CVE-2023-49994

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 12, 2023

Updated: Jan 19, 2024

CWE ID 697

Summary

CVE-2023-49994 is a newly discovered vulnerability in Espeak-ng 1.52-dev. This issue is related to a Floating Point Exception in the PeaksToHarmspect function located at wavegen.c. An attacker could potentially exploit this vulnerability by crafting a malicious input that triggers the exception, leading to unintended behavior or system crashes. The exact consequences and potential impact of this vulnerability are currently under investigation. Users are advised to apply the latest patches or updates to address this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

eSpeak NG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/trQ1ID
https://www.cve.org/CVERecord?id=CVE-2023-49994
https://nvd.nist.gov/vuln/detail/CVE-2023-49994

Back to Vulnerability Database

CVE-2023-49994

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations