CVE-2023-22363

Опубликовано: 25 июл. 2023

Источник: nvd

CVSS3: 6.5

CVSS3: 7.5

EPSS Низкий

Описание

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group.

This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 (MR2)

Ссылки

https://security.gallagher.com/en-NZ/Security-Advisories/CVE-2023-22363
Vendor Advisory
https://security.gallagher.com/en-NZ/Security-Advisories/CVE-2023-22363
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*

Версия от 8.80 (включая) до 8.80.1192 (исключая)

EPSS

Процентиль: 36%

0.0015

Низкий

6.5 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-121

CWE-787

Связанные уязвимости

GHSA-wx53-3c9r-58r2

CVSS3: 6.5

github

больше 2 лет назад

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 (MR2)

EPSS

Процентиль: 36%

0.0015

Низкий

6.5 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-121

CWE-787