CVE-2023-43785
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Oct 10, 2023
Updated: May 22, 2024
CWE ID 125
CWE ID 787
Summary
CVE-2023-43785 is a newly discovered vulnerability affecting the libX11 library. The issue lies within the _XkbReadKeySyms() function, where a boundary condition error occurs. Maliciously crafted input can trigger an out-of-bounds read error, enabling a local user to gain unauthorized access to system memory. This security flaw poses a significant risk, as sensitive information may be exposed. Users are strongly urged to apply the necessary patches as soon as possible to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- X.org Libx11
- Libx11
- Red Hat Enterprise Linux
- Fedora Operating System
Affected Vendors
- Red Hat
- Fedora Project
- X.Org Foundation
- X.Org