Key Information Vulnerability Overview CVE ID: CVE-2023-43694 Vulnerability Type: Out-of-Bounds Read Affected Products: Malwarebytes 4.x and 5.x, Nebula (versions from 2020-10-21 onwards) Description: An out-of-bounds read vulnerability exists in multiple disassemblers, leading to stability issues and denial of service. Affected Versions Malwarebytes 4.x: = 4.6.14.326 (Component version 1.0.2348, Update Package version >= 1.0.85245) Malwarebytes 5.x: >= 5.1.5.116 (Component version 1.0.1252, Update Package version >= 1.0.85245) Nebula Platform: Versions from June 2024 onwards, Endpoint Agent version >= 2.0.0.64, Protection Service version >= 4.6.17.334 Mitigation Recommendations Upgrade affected endpoints to the patched versions. Details CWE: CWE-125: Out-of-bounds Read CVSS 3.x: 5.2 (Medium) Attack Vector: Local Identification and References Identification: X41-Dsec Reference Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43694