CVE-2023-51888

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 24, 2024
Updated: Feb 5, 2024
CWE ID 120

Summary

CVE-2023-51888 is a buffer overflow vulnerability affecting the nomath() function in Mathtex version 1.05 and earlier. Maliciously crafted strings in the application URL can cause this issue, leading to a denial-of-service condition. The buffer overflow occurs due to insufficient bounds checking, enabling an attacker to manipulate the memory and potentially execute arbitrary code. Users are strongly advised to upgrade to a patched version of Mathtex to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share