Lucene search

K

CVE-2023-4039

🗓️ 13 Sep 2023 09:15:15Reported by ArmType 
cve
 cve
🔗 web.nvd.nist.gov👁 237 Views

A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit buffer overflow in dynamically-sized local variables without detection

Show more
Related
Detection
Affected
Refs
Nvd
Node
gnugccRange<2023-09-12arm64
[
  {
    "defaultStatus": "affected",
    "product": "Arm GNU Toolchain",
    "vendor": "Arm Ltd",
    "versions": [
      {
        "status": "affected",
        "version": "All versions where option -fstack-protector is used"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "GCC",
    "vendor": "GNU",
    "versions": [
      {
        "status": "affected",
        "version": "All versions of GCC that target AArch64 when option -fstack-protector is used"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
13 Sep 2023 09:15Current
5.3Medium risk
Vulners AI Score5.3
CVSS34.8
EPSS0.001
237
.json
Report