CVE-2023-39976
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Aug 8, 2023
Updated: Nov 7, 2023
CWE ID 120
Summary
CVE-2023-39976 is a newly disclosed vulnerability affecting libqb's log_blackbox.c module before version 2.0.8. This issue permits a buffer overflow to occur due to the failure to account for the header size when handling long log messages, potentially leading to arbitrary code execution or denial-of-service attacks. Successful exploitation of this vulnerability could result in significant system compromise or interruption. Users are strongly advised to upgrade to the latest version of libqb as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- ClusterLabs