Lucene search
Redhat.comRH:CVE-2023-34432HistoryJun 06, 2023 - 7:55 a.m.
CVE-2023-34432
2023-06-0607:55:55
redhat.com
access.redhat.com
31
cve-2023-34432
denial of service
code execution
information disclosure
lsx_readbuf function
formats_i.c.
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
23.1%
A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure.
Related
cvelist
cvelist
CVE-2023-34432 Heap-buffer-overflow in src/formats_i.c
2023-07-10 20:05:39
debiancve
debiancve
CVE-2023-34432
2023-07-10 21:15:10
cve
cve
CVE-2023-34432
2023-07-10 21:15:10
nvd
nvd
CVE-2023-34432
2023-07-10 21:15:10
prion
prion
Heap overflow
2023-07-10 21:15:00
veracode
veracode
Buffer Overflow
2023-08-22 18:00:42
ubuntucve
ubuntucve
CVE-2023-34432
2023-07-10 00:00:00
nessus
nessus
Amazon Linux 2 : sox (ALAS-2023-2231)
2023-09-08 00:00:00
openSUSE 15 Security Update : sox (openSUSE-SU-2023:0328-1)
2023-10-27 00:00:00
openSUSE 15 Security Update : sox (openSUSE-SU-2023:0329-1)
2023-10-27 00:00:00
amazon
amazon
Medium: sox
2023-08-31 22:29:00
openvas
openvas
openSUSE: Security Advisory for sox (openSUSE-SU-2023:0329-1)
2024-03-04 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
23.1%
Related for RH:CVE-2023-34432