CVE-2024-23617

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 26, 2024

Updated: Jan 31, 2024

CWE ID 119

CWE ID 120

Summary

CVE-2024-23617 is a buffer overflow vulnerability affecting Symantec Data Loss Prevention versions prior to 14.0.2. An unauthenticated attacker can exploit this issue by crafting a document and persuading a user to open it. Successful exploitation could lead to code execution, potentially allowing the attacker to gain control of the affected system. This vulnerability poses a significant risk to organizations using the Symantec Data Loss Prevention software and highlights the importance of keeping software up to date to protect against known security threats.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Broadcom

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uMgDMo
https://www.cve.org/CVERecord?id=CVE-2024-23617
https://nvd.nist.gov/vuln/detail/CVE-2024-23617

Back to Vulnerability Database

CVE-2024-23617

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations