CVSS 3.1 Score 7.8 of 10 (high)


Published Dec 4, 2023
Updated: Dec 7, 2023
CWE ID 862


CVE-2023-42739 is a cyber vulnerability that affects the engineermode service in multiple products, including sYyJEm, sYyJEl, and sYyJE8. It allows an attacker to write permission usage records of an app without proper authorization checks, potentially leading to a local escalation of privilege. The vulnerability has a high severity rating with a base score of 7.8 and impacts both integrity and confidentiality. The exploitability score is 1.8, indicating a relatively low level of difficulty for attackers. Organizations should remediate this vulnerability by applying the necessary patches or updates provided by the affected product vendors to mitigate the potential danger it poses to their systems and data.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-42739 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options