CVE-2023-5063

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Sep 20, 2023

Updated: Nov 7, 2023

CWE ID 79

Summary

CVE-2023-43620 is a vulnerability affecting Croc versions up to 9.6.5. This issue allows a sender to manipulate filenames with ANSI or CSI escape sequences, resulting in potential attacks on the terminal device of a receiver. By exploiting this vulnerability, an attacker could gain unauthorized control or cause unexpected behaviors on the affected system. It is recommended that users update to the latest version of Croc to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tw7pMU
https://www.cve.org/CVERecord?id=CVE-2023-5063
https://nvd.nist.gov/vuln/detail/CVE-2023-5063

Back to Vulnerability Database

CVE-2023-5063

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations