CVE-2023-35949

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published May 28, 2024
CWE ID 121

Summary

CVE-2023-35949 is a stack-based buffer overflow vulnerability that affects the readOFF.cpp functionality of libigl v2.4.0. This vulnerability can be exploited by a specially-crafted .off file, leading to arbitrary code execution. The vulnerability exists within the code responsible for parsing geometric faces of an OFF file. The affected products are 'wLM0Um' and 'wLOfAY'. The base severity of this vulnerability is rated as HIGH, with a base score of 7.8 out of 10. It requires user interaction and has a local attack vector. The impact includes high integrity and confidentiality impacts, with potential danger to organizations. Remediation steps are not provided in the available information.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-35949 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options