Unauthenticated Remote Denial-of-Service via Buffer in Helix Core
CVE-2023-5759

7.5HIGH

Key Information:

Vendor: Helix
Status: Helix Core
Vendor: CVE Published:; 8 November 2023

Badges

📰 News Worthy

What is CVE-2023-5759?

An unauthenticated remote Denial of Service (DoS) vulnerability has been discovered in Helix Core versions prior to 2023.2, which could allow attackers to disrupt service availability through specially crafted requests, leading to potential downtime. It is crucial for users and organizations employing Helix Core to apply the latest updates to safeguard against these threats.

Affected Version(s)

Helix Core 0.0.0 < 2023.2

Helix Core 0.0.0 < 2023.1 Patch 2

Helix Core 0.0.0 < 2022.2 Patch 3

News Articles

Dark Reading

CVE-2023-45849 CVE-2023-35767

Microsoft: Multiple Perforce Server Flaws Allow for Network Takeover

The most critical of the bugs gives attackers privileged access to the local Windows system, paving the way for unauthenticated RCE and installing backdoors.

References

https://perforce.com

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

📰
First article discovered by Dark Reading
Dec 19, 2023
Vulnerability published
Nov 8, 2023
Vulnerability Reserved
Oct 24, 2023

JSON