CVE-2023-51084

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 27, 2023
Updated: Jan 4, 2024
CWE ID 787

Summary

CVE-2023-51084 is a newly disclosed vulnerability affecting hyavijava version 6.0.07.1. This issue involves a stack overflow vulnerability that can be exploited through the ResultConverter.convert2Xml method. Successful exploitation could result in denial of service or potentially more serious consequences, such as code execution. Attackers could send specially crafted input to trigger the vulnerability, leading to memory corruption and potential application crashes. Organizations using this version of hyavijava are strongly advised to update to a patched version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share