CVE-2024-43051
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Mar 3, 2025
Updated: Mar 6, 2025
CWE ID 285
Summary
CVE-2024-43051 is a newly disclosed information disclosure vulnerability affecting Widevine, a popular digital rights management (DRM) system. During the process of generating session keys for any usage scenario, sensitive information is unintentionally exposed. This issue poses a risk for attackers to potentially gain unauthorized access to protected content or steal user data. It is essential for organizations utilizing Widevine to apply the forthcoming patch to mitigate this vulnerability and safeguard their systems and data.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.