CVE-2023-32840

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 6, 2023

Updated: Nov 13, 2023

CWE ID 787

Summary

CVE-2023-32840 is a vulnerability affecting the modem's CCCI (Customer Premises Equipment Control Connection Interface) component. It involves a missing bounds check that could result in an out-of-bounds write. This issue may allow for local privilege escalation, requiring System execution privileges. User interaction could be necessary for successful exploitation. The patch ID for mitigation is MOLY01138425, and the issue was assigned the ID MOLY01138425 (MSV-862).

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tSkxnZ
https://www.cve.org/CVERecord?id=CVE-2023-32840
https://nvd.nist.gov/vuln/detail/CVE-2023-32840

Back to Vulnerability Database

CVE-2023-32840

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations