CVE-2023-52266
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Dec 31, 2023
Updated: Jan 9, 2024
CWE ID 416
Summary
CVE-2023-52266 is a vulnerability affecting ehttp 1.0.6 before version 17405b9. This issue involves a use-after-free in the epoll_socket.cpp file's read_func. An attacker can exploit this vulnerability by making multiple connections within a short time frame, leading to memory corruption and potential code execution or denial-of-service attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share