Lucene search

K
f5F5F5:K000137187
HistoryOct 09, 2023 - 12:00 a.m.

K000137187 : GlibC vulnerability CVE-2023-4911

2023-10-0900:00:00
my.f5.com
5
glibc
buffer overflow
dynamic loader
local attacker
elevated privileges.

AI Score

7.5

Confidence

Low

EPSS

0.016

Percentile

87.4%

Security Advisory Description

A buffer overflow was discovered in the GNU C Library’s dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges. (CVE-2023-4911)

Impact

There is no impact; F5 products are not affected by this vulnerability.