Cyber Resilience

CVE-2023-54334

HighPublic PoC

Published: 13 January 2026

Published
13 January 2026
Modified
30 January 2026
KEV Added
Patch
CVSS Score v4 7.0 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0050 38.8th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2023-54334 is a high-severity Stack-based Buffer Overflow (CWE-121) vulnerability in Explorerplusplus Explorer\+\+. Its CVSS base score is 7.0 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 38.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Deeper analysis

CVE-2023-54334 is a buffer overflow vulnerability affecting Explorer32++ version 1.3.5.531, specifically in its Structured Exception Handler (SEH) records. The flaw, tied to CWE-121 (Stack-based Buffer Overflow) and CWE-787 (Out-of-bounds Write), can be triggered by supplying a file name argument exceeding 396 characters. This corrupts the SEH chain, enabling attackers to execute arbitrary code. The vulnerability carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating critical severity due to its network accessibility and high impact on confidentiality, integrity, and availability.

Unauthenticated remote attackers can exploit this vulnerability without requiring privileges or user interaction. By providing a specially crafted long file name argument, they corrupt the SEH chain and achieve arbitrary code execution on the targeted system running the affected Explorer32++ version.

Advisories and references highlight the issue without detailing patches, as Explorer32++ appears to be an open-source project with an archived homepage. A proof-of-concept exploit is publicly available on Exploit-DB (ID 51077), and Vulncheck has published an advisory on the buffer overflow. Security practitioners should avoid using version 1.3.5.531 and monitor for updates, though none are explicitly referenced.

EU & UK References

Vulnerability details

Explorer32++ 1.3.5.531 contains a buffer overflow vulnerability in Structured Exception Handler (SEH) records that allows attackers to execute arbitrary code. Attackers can exploit the vulnerability by providing a long file name argument over 396 characters to corrupt the SEH chain…

more

and potentially execute malicious code.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

Remote unauthenticated buffer overflow enabling arbitrary code execution on a network-accessible application directly maps to exploitation of public-facing apps.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-2263Shared CWE-121, CWE-787
CVE-2025-34468Shared CWE-121, CWE-787
CVE-2025-70237Shared CWE-121, CWE-787
CVE-2025-54820Shared CWE-121, CWE-787
CVE-2025-70234Shared CWE-121, CWE-787
CVE-2025-0282Shared CWE-121, CWE-787
CVE-2025-70245Shared CWE-121, CWE-787
CVE-2025-70239Shared CWE-121, CWE-787
CVE-2025-66047Shared CWE-121, CWE-787
CVE-2026-24497Shared CWE-121, CWE-787

Affected Assets

explorerplusplus
explorer\+\+
1.3.5.531

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly requires validation of file name inputs to block excessively long strings that trigger the buffer overflow and SEH corruption.

prevent

Implements memory protections like DEP, ASLR, and stack canaries that mitigate SEH chain overwrite exploits from buffer overflows.

prevent

Mandates timely identification, reporting, and remediation of flaws such as CVE-2023-54334 by patching, updating, or removing the vulnerable Explorer32++ software.

References