CVSS 3.1 Score 6.3 of 10 (medium)


Published Sep 4, 2023
Updated: Sep 7, 2023
CWE ID 125


CVE-2023-20851 is a vulnerability in stc software that can result in an out-of-bounds read due to a race condition. This vulnerability requires user interaction for exploitation and can lead to local escalation of privilege with system execution privileges needed. The affected products include nn8kgA, sYyJEm, sYyJEl, and fWGaF5. To remediate the vulnerability, a patch with ID ALPS08048635 is available. The potential danger posed by this vulnerability is medium severity, with high privileges required and high impacts on integrity and confidentiality.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-20851 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options