CVE-2023-52312

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 3, 2024
Updated: Jan 5, 2024
CWE ID 476

Summary

CVE-2023-52312 is a null pointer dereference vulnerability affecting PaddlePaddle before version 2.6.0. This issue resides in the paddle.crop function and can result in a runtime crash, leading to a denial of service (DoS) when an application attempts to access memory that has not been properly initialized. Attackers could exploit this vulnerability to cause unintended application behavior or prevent legitimate users from accessing affected systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share