CVE-2023-32889

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 2, 2024
Updated: Jan 5, 2024
CWE ID 787

Summary

CVE-2023-32889 is a newly disclosed vulnerability affecting Modem IMS Call UA. This issue involves a missing bounds check that permits an out-of-bounds write. Exploitation of this vulnerability can lead to a remote denial-of-service (DoS) attack, requiring no additional execution privileges. Importantly, user interaction is not necessary for an attacker to successfully exploit this weakness. The patch ID for addressing this issue is MOLY01161825, and it is also identified as MSV-895.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share