CVE-2021-46174

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 22, 2023
Updated: Aug 25, 2023
CWE ID 787

Summary

CVE-2021-46174 refers to a heap-based buffer overflow vulnerability identified in the Binutils objdump version 3.37. The issue lies within the function "bfd_getl32," which can be exploited by malicious actors to inject and execute arbitrary code if they manage to overflow the buffer. This vulnerability poses a significant risk, particularly in environments where objdump is frequently used or where untrusted input is processed. Successful exploitation may lead to system compromise or data theft. Users are urged to apply the available patch as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share