CVE-2023-46278

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 1, 2023
Updated: Nov 8, 2023
CWE ID 400

Summary

CVE-2023-46278 is a vulnerability affecting Cybozu Remote Service versions 4.1.0 to 4.1.1. An attacker who gains authenticating access can exploit this uncontrolled resource consumption issue, causing the system to consume excessive storage space or experience significantly delayed communication. This can result in denial-of-service conditions or potential crashes, posing a risk to system stability and availability. The attacker can manipulate the affected software to trigger the issue remotely, making it crucial for organizations using these versions to apply the necessary patches promptly.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Cybozu Remote Service

Affected Vendors

  • Cybozu