Out-of-bounds access a buffer in IMS
CVE-2023-49699

7.8HIGH

Key Information:

Vendor: ASR
Status: Falcon
Vendor: CVE Published:; 30 November 2023

What is CVE-2023-49699?

A memory corruption vulnerability exists in the IMS VoLTE Streaming Media Interface, which could potentially allow an attacker to exploit this flaw during operations involving VoLTE streaming. This condition may lead to unexpected behaviors, including unauthorized access or system crashes.

Affected Version(s)

Falcon Linux 0

References

https://www.asrmicro.com/en/goods/psirt?cid=31

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 30, 2023
Vulnerability Reserved
Nov 30, 2023

ASR

What is CVE-2023-49699?

Affected Version(s)

References

CVSS V3.1

Timeline