CVE-2023-6478

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 13, 2023

Updated: May 22, 2024

CWE ID 190

Summary

CVE-2023-6478 is a newly discovered vulnerability affecting the xorg-server software. This issue involves an integer overflow in the handling of certain requests to RRChangeProviderProperty or RRChangeOutputProperty functions. If exploited, this vulnerability could result in the disclosure of sensitive information. Users are strongly advised to update their xorg-server packages to a version that addresses this issue to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

X.Org Xserver
Debian

Affected Vendors

Debian
X.Org
Red Hat

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/trSvLn
https://www.cve.org/CVERecord?id=CVE-2023-6478
https://nvd.nist.gov/vuln/detail/CVE-2023-6478

Back to Vulnerability Database