CVE-2024-23613

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 26, 2024
Updated: Jan 31, 2024
CWE ID 119
CWE ID 120

Summary

CVE-2024-23613 is a newly disclosed buffer overflow vulnerability that affects Symantec Deployment Solution version 7.9. The flaw is triggered during the parsing of UpdateComputer tokens, allowing a remote, anonymous attacker to execute malicious code with SYSTEM privileges. This vulnerability poses a significant risk as it enables complete system compromise, and Symantec urges users to apply the available patch promptly to mitigate the threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share