CRITICAL🇵🇱 Wersja polska

CVE-2023-31488

CVSS 9.8v3.1pub. 2024-01-10upd. 2024-11-21

Hyland Perceptive Filters releases before 2023-12-08 (e.g., 11.4.0.2647), as used in Cisco IronPort Email Security Appliance Software, Cisco Secure Email Gateway, and various non-Cisco products, allow attackers to trigger a segmentation fault and execute arbitrary code via a crafted document.

🤖 AI Analysis
How it works

The attacker sends a specially crafted document to a system using the Hyland Perceptive Filters library. While processing such a document, the library performs an improper memory write (CWE-787 — buffer overflow/out-of-bounds write), which leads to a segmentation fault. This fault can be exploited to hijack program execution flow control and execute arbitrary code.

Impact

An attacker without any privileges can remotely execute arbitrary code on the vulnerable system, which in practice means complete takeover of the device — threat to system confidentiality, integrity, and availability.

Mitigation & patch

Update the Hyland Perceptive Filters library to a version released after 2023-12-08 (after version 11.4.0.2647). For Cisco products, apply patches available from the manufacturer according to references (Cisco Bug ID: CSCwe11003). It is also recommended to monitor security channels of vendors of other products using this library.

Who is affected

Hyland Perceptive Filters in versions before 2023-12-08 (e.g., 11.4.0.2647), used in Cisco IronPort Email Security Appliance, Cisco Secure Email Gateway, and other third-party products using this library.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Cisco Ironport Email Security Appliance

    APP
    Cisco
    wszystkie wersje
  • Cisco Secure Email Gateway

    HW
    Cisco
    wszystkie wersje
  • Cisco Secure Email Gateway Firmware

    OS
    Cisco
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2024-20401CRITICAL9.8PL ✓ten sam produkt

Cisco Secure Email Gateway — nadpisywanie dowolnych plików przez załącznik e-mail

CVE-2025-20153MEDIUM5.8ten sam produkt

A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated,...

CVE-2023-20119MEDIUM6.1ten sam produkt

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web...

CVE-2023-20028MEDIUM5.4ten sam produkt

Multiple vulnerabilities in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Emai...

CVE-2023-20120MEDIUM5.4ten sam produkt

Multiple vulnerabilities in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Emai...