CVE-2023-32880

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Jan 2, 2024
Updated: Jan 5, 2024
CWE ID 125

Summary

CVE-2023-32877 is a newly identified vulnerability affecting batteries. The issue stems from a missing bounds check, which could result in an out-of-bounds write. This flaw presents a significant risk, allowing for local privilege escalation with System execution privileges required. Notably, user interaction is not necessary for exploitation. The patch for this vulnerability carries the ID ALPS08308070.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share