CVE-2023-40305

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 14, 2023
Updated: Nov 7, 2023
CWE ID 787

Summary

CVE-2023-40305 is a newly discovered vulnerability affecting GNU Indent version 2.2.13. This issue involves a heap-based buffer overflow in the "search\_brace" function of the "indent.c" file. A maliciously crafted file can trigger this vulnerability and potentially lead to arbitrary code execution, posing a serious security risk for users. It is recommended that users immediately update their GNU Indent installations to a patched version to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share