CVE-2023-33917

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Sep 4, 2023
Updated: Sep 7, 2023
CWE ID 862

Summary

CVE-2023-33917 is a cyber vulnerability found in the vowifiservice. It is categorized as a missing authorization issue, potentially leading to local information disclosure without requiring additional execution privileges. The affected products include sYyJEl and fWGaF5. To remediate this vulnerability, it is recommended to implement proper permission checks within the vowifiservice code. Organizations should be aware that this vulnerability poses a medium risk with a base severity score of 5.5, and it has a high impact on confidentiality. The exploitability score is 1.8, indicating a relatively low difficulty for potential attackers to exploit this vulnerability locally.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-33917 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options