CVE-2023-38127

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Oct 19, 2023
Updated: Oct 25, 2023
CWE ID 190

Summary

CVE-2023-38127 is an integer overflow vulnerability that affects Ichitaro 2023 1.0.1.59372. This vulnerability can be exploited by providing a specially crafted document, which can cause the parser to make an undersized allocation and lead to memory corruption. As a result, arbitrary code execution may occur. The risk score for this vulnerability is 25, indicating a high severity level. It requires local access and user interaction to exploit, but it does not require any privileges. The impact includes high integrity and confidentiality impacts, as well as potential availability impact. To mitigate this vulnerability, users should update to the latest version of Ichitaro 2023 or apply any patches or fixes provided by the vendor.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-38127 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options