The vulnerability in the __monstartup function of the gmon.c file in the system calls and main functions of the GNU C library (glibc) allows a malicious actor to access confidential data.

🗓️ 15 Feb 2023 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 4 Views

A buffer overflow in __monstartup of gmon.c in GNU C library allows remote attackers to access confidential data.

Reporter	Title	Published	Views	Family All 81
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Operator package issues	7 May 202417:05	–	ibm
IBM Security Bulletins	Security Bulletin: Execution Engine for Apache Hadoop is vulnerable to denial of service, buffer overflow and allow a local authenticated attacker to gain elevated privileges	15 Apr 202502:36	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities	29 Apr 202502:35	–	ibm
ATTACKERKB	CVE-2023-0687	6 Feb 202319:15	–	attackerkb
CBLMariner	CVE-2023-0687 affecting package glibc 2.28-24	12 Jan 202509:15	–	cbl_mariner
CBLMariner	CVE-2023-0687 affecting package glibc 2.35-10	12 Jan 202509:15	–	cbl_mariner
Circl	CVE-2023-0687	6 Feb 202322:29	–	circl
CNNVD	GNU C Library 安全漏洞	6 Feb 202300:00	–	cnnvd
CVE	CVE-2023-0687	6 Feb 202300:00	–	cve
Cvelist	CVE-2023-0687	6 Feb 202300:00	–	cvelist

Vulners

Node

gnu glibcMatch2.38

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-0687
patchwork	www.patchwork.sourceware.org/project/glibc/patch/[email protected]/
sourceware	www.sourceware.org/bugzilla/show_bug.cgi
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
redos	www.redos.red-soft.ru/support/secure/
abf	www.abf.rosa.ru/advisories/ROSA-SA-2025-3030
web	www.web.nvd.nist.gov/view/vuln/detail

06 Nov 2025 00:00Current

6.1Medium risk

Vulners AI Score6.1

CVSS 24

CVSS 34.6

EPSS0.01103

buffer overflow monstartup function GNU C library remote attacker confidential data exposure