CVE-2023-38447

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Sep 4, 2023
Updated: Sep 8, 2023
CWE ID 862

Summary

CVE-2023-38447 is a newly discovered vulnerability affecting the vowifiservice component. This issue involves a missing permission check, which can result in a local denial of service without requiring any additional execution privileges. Attackers can exploit this flaw to disrupt the targeted system's functionality, leading to service disruptions and potential downtime. The precise impact on the affected component and its dependencies may vary, but the risk of a denial of service attack is significant. System administrators are advised to apply the necessary patches or updates as soon as possible to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share