CVE-2023-33220

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 15, 2023
Updated: Dec 21, 2023
CWE ID 787
CWE ID 121

Summary

CVE-2023-33220 is a vulnerability affecting firmware retrofit validation processes. The issue lies in improper boundary checking during attribute copying, resulting in a stack-based buffer overflow. An attacker could exploit this flaw to execute remote code on the targeted device. This vulnerability poses a significant risk and requires immediate attention and patching to prevent potential exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share