CVE-2023-20757

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Jul 4, 2023
Updated: Jul 10, 2023
CWE ID 787

Summary

CVE-2023-20757 is a vulnerability affecting the cmdq software. It involves a missing bounds check that could result in an out-of-bounds write. This issue allows for local privilege escalation, granting System execution privileges to an attacker. No user interaction is required for exploitation. The patch ID for this vulnerability is ALPS07636133.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share