CVE-2023-30648

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jul 6, 2023
Updated: Nov 7, 2023
CWE ID 787

Summary

CVE-2023-30648 is a stack out-of-bounds write vulnerability discovered in the IpcRxImeiUpdateImeiNoti component of the Radio Interface Layer Daemon (RILD) in the Jul-2023 Release 1 of a specific system. Successful exploitation of this vulnerability could result in a denial of service on the affected system. The issue arises from a programming error that allows data to be written beyond the allocated space in the stack memory, potentially overwriting crucial system information and disrupting normal operations. It is essential that affected organizations apply the necessary patches to resolve this issue and mitigate potential risks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share