Heap buffer overflow in paddle.repeat_interleave
CVE-2023-52309

8.2HIGH

Key Information:

Vendor: Paddlepaddle
Status: Paddlepaddle
Vendor: CVE Published:; 3 January 2024

🔔 Create Paddlepaddle Vulnerability Alert

What is CVE-2023-52309?

A vulnerability exists in PaddlePaddle affecting versions before 2.6.0, specifically in the paddle.repeat_interleave function. This heap buffer overflow can be exploited, potentially leading to denial of service and the possibility of information disclosure, putting systems using affected versions at risk of significant disruptions and data leaks.

Affected Version(s)

PaddlePaddle 0 < 2.6.0

References

https://github.com/PaddlePaddle/Paddle/blob/develop/secur...

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 3, 2024
Vulnerability Reserved
Jan 2, 2024

CVE-2023-52309 Data

JSON