CVE-2024-33053
CVSS 3.1 Score 6.7 of 10 (medium)
Details
Published Dec 2, 2024
Updated: Dec 12, 2024
CWE ID 416
Summary
CVE-2024-33053 is a newly identified memory corruption vulnerability. It occurs when multiple threads attempt to unregister the CVP buffer concurrently. As a result, the memory could be improperly freed, leading to unintended behavior or potential exploitation. An attacker could exploit this vulnerability to execute arbitrary code, potentially gaining unauthorized access or causing denial-of-service conditions. Systems that utilize the affected component are at risk and should be updated as soon as a patch becomes available.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share