exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2023-4235

почти 2 года назад

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_deliver_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_deliver_report().

CVSS3: 8.1

EPSS: Низкий

CVE-2023-4235

почти 2 года назад

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_deliver_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_deliver_report().

CVSS3: 8.1

EPSS: Низкий

CVE-2023-4235

почти 2 года назад

A flaw was found in ofono, an Open Source Telephony on Linux. A stack ...

CVSS3: 8.1

EPSS: Низкий

GHSA-442g-7r67-9534

почти 2 года назад

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_deliver_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_deliver_report().

CVSS3: 8.1

EPSS: Низкий

BDU:2024-04254

больше 2 лет назад

Уязвимость функции decode_deliver_report() стека мобильной телефонии oFono, позволяющая нарушителю выполнить произвольный код

CVSS3: 8.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2023-4235 A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_deliver_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_deliver_report().	CVSS3: 8.1	0% Низкий	почти 2 года назад
CVE-2023-4235 A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_deliver_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_deliver_report().	CVSS3: 8.1	0% Низкий	почти 2 года назад
CVE-2023-4235 A flaw was found in ofono, an Open Source Telephony on Linux. A stack ...	CVSS3: 8.1	0% Низкий	почти 2 года назад
GHSA-442g-7r67-9534 A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_deliver_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check for this memcpy length in decode_submit(), but it was forgotten in decode_deliver_report().	CVSS3: 8.1	0% Низкий	почти 2 года назад
BDU:2024-04254 Уязвимость функции decode_deliver_report() стека мобильной телефонии oFono, позволяющая нарушителю выполнить произвольный код	CVSS3: 8.1	0% Низкий	больше 2 лет назад

Уязвимостей на страницу