Unbounded Read Vulnerability in NFA Allows Local Information Disclosure

Unbounded Read Vulnerability in NFA Allows Local Information Disclosure

CVE-2023-21352 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

In NFA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

Learn more about our User Device Pen Test.