CVE-2023-42716

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 4, 2023
Updated: Dec 7, 2023
CWE ID 668

Summary

CVE-2023-42716 is a vulnerability in telephony service that could lead to remote information disclosure without requiring additional execution privileges. The affected products are sYyJEl and sYyJE8. To remediate this vulnerability, organizations should implement a missing permission check in their telephony service. This vulnerability poses a high danger to organizations as it allows for the unauthorized disclosure of sensitive information. The base severity score is rated as HIGH, with a base score of 7.5 according to the National Vulnerability Database (NVD).

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-42716 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options