CVE-2023-48025
CVSS 3.1 Score 8.1 of 10 (high)
Details
Summary
CVE-2023-48025 is a newly disclosed vulnerability affecting Liblisp before commit 4c65969. This issue involves an out-of-bounds-read vulnerability in the unsigned get_length function located at eval.c. An attacker can exploit this flaw to read memory outside of the intended boundaries, potentially resulting in the leakage of sensitive information or system instability. The impact of this vulnerability could vary depending on the specific application using Liblisp and the attacker's intentions. Users are advised to apply the available patch or upgrade to a version not affected by this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions