CVE-2023-3766

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Aug 3, 2023
Updated: Aug 10, 2023
CWE ID 120

Summary

CVE-2023-3766 is a vulnerability affecting the odoh-rs rust crate. The issue arises from flawed parsing logic during the decryption of queries from remote clients. An attacker with malicious intent can take advantage of this weakness by crafting and sending bespoke encrypted queries to susceptible ODOH servers. Upon successful exploitation, these queries cause the server to crash unexpectedly, leading to service disruption.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share