CVE-2023-30934

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jul 12, 2023
Updated: Jul 20, 2023
CWE ID 862

Summary

CVE-2023-30934 represents a vulnerability in a telephony service where essential permission checks are missing. This issue allows unauthorized access to local information without the need for any additional execution privileges. An attacker can exploit this flaw to gain insights into the system, potentially compromising sensitive data or gaining a foothold for further attacks. This vulnerability poses a significant risk and requires immediate remediation to prevent potential data breaches or unauthorized system access.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share