CVE-2023-53156
Published: 27 July 2025
Summary
CVE-2023-53156 is a medium-severity Integer Overflow or Wraparound (CWE-190) vulnerability in Ejmahler Transpose. Its CVSS base score is 4.5 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 48.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-59767
Vulnerability details
The transpose crate before 0.2.3 for Rust allows an integer overflow via input_width and input_height arguments.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Buffer overflow via integer overflow enables arbitrary code execution through exploitation, mapping to privilege escalation (T1068), client execution (T1203), and defense evasion (T1211).
MITRE ATLAS TechniquesAI
MITRE ATLAS techniques
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.