CVSS Score of 10 (low)


Published Sep 1, 2023
Updated: Sep 6, 2023
CWE ID 190


CVE-2023-36326 is an Integer Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab. This vulnerability affects multiple products (i6iSDh, iFVGgc, iFVGgd, iFVGge, iFVGgf, i6iSDi, iFVGgb, iFVGgk, iFVGgg, iFVGgh, iFVGgi, and iFVGgj). It allows attackers to execute arbitrary code, cause a denial of service, and escalate privileges by exploiting the realloc function in the bn_grow function. The vulnerability has a high severity rating (CVSS score 9.8) and poses a significant danger to organizations as it can be exploited remotely without any privileges or user interaction. To remediate this vulnerability, affected organizations should update their RELIC software to the latest version with commit 34580d840469361ba9b5f001361cad659687b9ab or apply any available patches provided by the vendor.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-36326 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options