CVE-2023-47997

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 10, 2024
Updated: Mar 23, 2024
CWE ID 835

Summary

CVE-2023-47997 is a denial-of-service vulnerability affecting the FreeImage library version 3.18.0. A flaw in BitmapAccess.cpp's FreeImage_AllocateBitmap function results in an infinite loop, allowing attackers to cause the application to crash and become unresponsive. This vulnerability could potentially be exploited to make targeted systems unavailable to users. The FreeImage team has since released a patch to address this issue. Users are advised to update their FreeImage library to the latest version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share