CVE-2023-47995

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 9, 2024
Updated: Mar 23, 2024
CWE ID 120

Summary

CVE-2023-47995 is a vulnerability discovered in FreeImage version 3.18.0, specifically in the BitmapAccess.cpp::FreeImage_AllocateBitmap function. It allows attackers to cause a denial of service by exploiting a memory allocation with an excessive size value. This vulnerability has a base severity rating of MEDIUM and a base score of 6.5 according to NVD@nist.gov. The exploitability score is 2.8, and the attack vector is through the network with required user interaction. The impact score is 3.6, and the availability impact is rated as HIGH. No privileges are required to exploit this vulnerability, and it does not have any integrity or confidentiality impact.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-47995 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options