CVSS 3.1 Score 9.6 of 10 (high)


Published Nov 14, 2023
Updated: Nov 18, 2023
CWE ID 120


CVE-2023-43504 is a vulnerability identified in COMOS, specifically affecting all versions prior to V10.4.4. The vulnerability resides in the Ptmcast executable used for testing cache validation service in the affected application and is susceptible to a Structured Exception Handler (SEH) based buffer overflow. Exploiting this vulnerability could enable an attacker to execute arbitrary code on the target system or cause a denial of service condition. The affected products include Qtr0mr, Qtr0mq, Qtr0mp, Qtr0mo, Qtr0mv, mWuMLV, Qtr0mu, Qtr0ms, Qtr0mn, mohdX8, mohdX9, lRyF40, mohdX6, mohdX7, Qtr0my, Qtr0mx, and Qtr0mw. The severity of this vulnerability is rated as CRITICAL with a base score of 9.6 out of 10 and potential impacts on integrity and confidentiality being rated as HIGH. It requires user interaction and has a network-based attack vector. The remediation for this vulnerability is not provided in the given information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-43504 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options