CVE-2023-43786

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Oct 10, 2023
Updated: Jan 24, 2024
CWE ID 400
CWE ID 835

Summary

CVE-2023-43786 is a vulnerability found in libX11, affecting multiple products. The vulnerability is caused by an infinite loop within the PutSubImage() function, allowing a local user to consume all available system resources and potentially cause a denial of service. The base severity of this vulnerability is rated as MEDIUM, with a base score of 5.5 according to NVD@nist.gov. The exploitability score is 1.8, indicating a relatively low likelihood of successful exploitation. Remediation for this vulnerability may require patching or updating the affected products. The potential danger it poses to organizations lies in the potential disruption of services due to resource exhaustion, which could impact system availability and performance.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-43786 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options