exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2023-4234

почти 2 года назад

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_submit_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_submit_report().

CVSS3: 8.1

EPSS: Низкий

CVE-2023-4234

почти 2 года назад

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_submit_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_submit_report().

CVSS3: 8.1

EPSS: Низкий

CVE-2023-4234

почти 2 года назад

A flaw was found in ofono, an Open Source Telephony on Linux. A stack ...

CVSS3: 8.1

EPSS: Низкий

GHSA-rc4x-jw53-834q

почти 2 года назад

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_submit_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_submit_report().

CVSS3: 8.1

EPSS: Низкий

BDU:2023-09111

больше 2 лет назад

Уязвимость функции decode_submit_report() стека мобильной телефонии oFono, позволяющая нарушителю выполнить произвольный код

CVSS3: 8.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2023-4234 A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_submit_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_submit_report().	CVSS3: 8.1	0% Низкий	почти 2 года назад
CVE-2023-4234 A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_submit_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_submit_report().	CVSS3: 8.1	0% Низкий	почти 2 года назад
CVE-2023-4234 A flaw was found in ofono, an Open Source Telephony on Linux. A stack ...	CVSS3: 8.1	0% Низкий	почти 2 года назад
GHSA-rc4x-jw53-834q A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_submit_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_submit_report().	CVSS3: 8.1	0% Низкий	почти 2 года назад
BDU:2023-09111 Уязвимость функции decode_submit_report() стека мобильной телефонии oFono, позволяющая нарушителю выполнить произвольный код	CVSS3: 8.1	0% Низкий	больше 2 лет назад

Уязвимостей на страницу