CVE-2023-33033

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 2, 2024
Updated: Apr 12, 2024
CWE ID 823
CWE ID 787

Summary

CVE-2023-33033 is a newly discovered memory corruption vulnerability affecting the audio playback feature with speaker protection. During the playback process, an incorrect handling of audio data may lead to unintended memory manipulation, potentially enabling attackers to execute arbitrary code or cause a denial-of-service condition. The vulnerability could pose a significant risk if exploited in a malicious context, such as email attachments, malicious websites, or compromised software. Users are advised to apply the respective security patches to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share