THREATOPS
THREAT OPSCVEs › CVE-2023-4911

CVE-2023-4911 — GNU C Library Buffer Overflow Vulnerability

CISA KEVExploited: confirmedGNU

GNU C Library's dynamic loader ld.so contains a buffer overflow vulnerability when processing the GLIBC_TUNABLES environment variable, allowing a local attacker to execute code with elevated privileges.

Vulnerability details