CVE-2023-20850

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Sep 4, 2023
Updated: Sep 7, 2023
CWE ID 787

Summary

CVE-2023-20850 is a cyber vulnerability that affects multiple products including r9ng4U, lAMRr5, sYyJEl, fWGaF5, pKnQKJ, sYyJE8, and tuGM68. It is categorized as a medium risk with a base score of 6.5. The vulnerability allows for an out of bounds write in imgsys_cmdq due to missing valid range checking. This can potentially lead to local escalation of privilege with system execution privileges required. User interaction is necessary for exploitation. The vulnerability has a high impact on integrity and confidentiality, and the availability impact is also high. A patch with the ID ALPS07340433 has been issued to remediate the vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share