CVE-2024-23683

CVSS 3.1 Score 8.2 of 10 (high)

Details

Published Jan 19, 2024
Updated: Jan 26, 2024

Summary

CVE-2024-23683 is a vulnerability in Artemis Java Test Sandbox versions below 1.7.6 that allows for sandbox escape when a specially crafted subclass of InvocationTargetException is used. This vulnerability affects multiple products. An attacker can exploit this issue to execute arbitrary Java code when a victim runs the supposedly sandboxed code. The risk score for this vulnerability is 26, indicating a high level of danger to organizations. The base severity is rated as HIGH with a score of 8.2, and the impact includes high integrity and confidentiality impacts. The attack vector is local, and user interaction is required. To remediate this vulnerability, users are advised to update to Artemis Java Test Sandbox version 1.7.6 or above to prevent sandbox escape and potential execution of arbitrary code.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-23683 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options