CVE-2023-21265

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Aug 14, 2023
Updated: Aug 24, 2023
CWE ID 295

Summary

CVE-2023-21265 is a vulnerability that involves the presence of root CA certificates which require disabling. If left unchecked, this issue could lead to remote information disclosure without the need for additional execution privileges. Notably, user interaction is not necessary for an attacker to exploit this vulnerability. This weakness, located in multiple areas, poses a significant risk to systems and data security.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share