CVE-2023-39321

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 8, 2023
Updated: Nov 25, 2023

Summary

CVE-2023-39321 is a newly discovered vulnerability affecting QUIC connections. If a server encounters an incomplete post-handshake message during the QUIC handshake process, it may experience a panic, leading to potential denial-of-service (DoS) attacks or unintended application behavior. The vulnerability could pose a significant risk, especially for applications and services that heavily rely on QUIC for secure communication. It is crucial for organizations using QUIC to apply patches as soon as they become available to mitigate this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share