CVE-2023-33221
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Dec 15, 2023
Updated: Dec 21, 2023
CWE ID 787
CWE ID 122
Summary
CVE-2023-33221 is a vulnerability affecting the function that reads DesFire keys in certain devices. The issue lies in the lack of proper boundary checking, which can result in a heap-based buffer overflow. An attacker can exploit this vulnerability to potentially execute remote code on the targeted device, making it particularly concerning if the default DESFire key is being used.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share