CVE-2023-43789

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Oct 12, 2023
Updated: May 22, 2024
CWE ID 125

Summary

CVE-2023-43789 is a newly discovered vulnerability affecting the libXpm library. This issue arises from a boundary condition, which allows a local user to trigger an out-of-bounds read error. By exploiting this vulnerability, an attacker can gain unauthorized access to memory contents on the affected system. The impact of this vulnerability is significant, as it can lead to information disclosure, potentially resulting in sensitive data being exposed. It is recommended that users update their libXpm library as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Red Hat Enterprise Linux
  • Fedora Operating System

Affected Vendors

  • Red Hat
  • Fedora Project