CVE-2023-44216

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Sep 27, 2023
Updated: Oct 5, 2023
CWE ID 203

Summary

CVE-2023-44216 is a vulnerability affecting Imagination GPUs from 2018 onwards, specifically the PowerVR Image Compression (PVRIC) feature. This vulnerability allows for cross-origin pixel-stealing attacks against feTurbulence and feBlend in the SVG Filter specification. Attackers can potentially determine text on a web page from one origin if they control a resource from a different origin. The vulnerability has a base severity rating of MEDIUM and a base score of 5.3 according to NVD@NIST. The affected products include qFsZ5r, nn8kgA, sYyJEm, and pR5ggp. Remediation measures have not been specified in the provided information, but organizations should promptly apply any patches or updates released by Imagination to mitigate the potential danger posed by this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-44216 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options