CVE-2023-44821
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Oct 9, 2023
Updated: Aug 2, 2024
CWE ID 401
Summary
CVE-2023-44821 is a potential denial-of-service vulnerability affecting Gifsicle through version 1.94. If an attacker manages to supply untrusted input that impacts Gif_Realloc calls, memory consumption could increase, leading to a denial-of-service condition. However, it is important to note that this vulnerability has been disputed due to the uncommon use of Gifsicle for unattended operations, lack of library linking functionality, and limited realistic attack scenarios.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share