CVE-2023-4949

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Nov 10, 2023
Updated: Nov 20, 2023
CWE ID 119
CWE ID 787
CWE ID 190

Summary

CVE-2023-4949 is a cyber vulnerability that affects the grub-legacy bootloader's XFS file system implementation. This vulnerability can be exploited by an attacker with local access to a system through a disk or external drive. By presenting a modified XFS partition to grub-legacy, the attacker can exploit a memory corruption issue. The risk score for this vulnerability is 25, indicating a high severity level. The base score is 8.1, with high privileges required and no user interaction necessary. The potential danger to an organization includes low integrity impact but high confidentiality and availability impacts. Remediation steps or further details on the potential danger are not provided in the given information.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-4949 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options