CVE-2023-46362
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2023-46362, a vulnerability affecting jbig2enc v0.28, has been discovered to contain a heap-use-after-free via jbig2enc_auto_threshold_using_hash in src/jbig2enc.cc. The affected product is cEPecD. The vulnerability has a base severity rating of MEDIUM with a base score of 5.5 according to NIST. It requires user interaction and can be exploited locally. The potential danger it poses is a high availability impact, as indicated by the vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H. Remediation steps or any additional information about the vulnerability are not provided in the given text.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions