CVE-2023-29731

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published May 30, 2023
Updated: Jan 13, 2025
CWE ID 276

Summary

CVE-2023-29731 is a vulnerability affecting SoLive versions 1.6.14 through 1.6.20 for Android. This issue exposes a component that enables an attacker to modify SharedPreference files by injecting large amounts of data. When an attacker overloads a file with excessive data, the application experiences an Out-of-Memory (OOM) error and crashes at startup, leading to a persistent Denial of Service (DoS) attack.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share