CVE-2023-39969

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 9, 2023
Updated: Aug 16, 2023
CWE ID 347

Summary

CVE-2023-39969 is a vulnerability affecting version 1.0.9 of the uthenticode library. This cross-platform software is used for partially verifying Authenticode digital signatures. The issue arises from the library hashing the entire file instead of specific sections by virtual address, which goes against Authenticode's specifications. An attacker can exploit this vulnerability by modifying code within a binary without changing its Authenticode hash, making it appear valid to uthenticode. The 2.x series of the library addresses this issue, and users are encouraged to upgrade. Versions prior to 1.0.9 and those in the 2.x series are not vulnerable. There are no workarounds for this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share