CVE-2023-43198

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 20, 2023
Updated: Sep 22, 2023
CWE ID 787

Summary

CVE-2023-43198 is a critical vulnerability found in the D-Link device DI-7200GV2.E1 v21.04.09E1, specifically in the H5/hi_block.asp function. This vulnerability is categorized as an out-of-bounds write (CWE-787). It can be exploited remotely through a network attack vector without requiring any privileges or user interaction. The impact of this vulnerability is high, with the potential to compromise the confidentiality, integrity, and availability of the affected system. The base severity score is rated as 9.8 out of 10 by NIST, indicating a significant danger to organizations using this device. However, there is no information provided on how to remediate this vulnerability or details regarding any potential attacks exploiting it.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-43198 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options