Lucene search

ASRCVELIST:CVE-2023-49699

HistoryNov 30, 2023 - 7:04 a.m.

CVE-2023-49699 Out-of-bounds access a buffer in IMS

2023-11-3007:04:48

CWE-119

ASR

www.cve.org

cve-2023-49699

out-of-bounds access

buffer

ims

memory corruption

volte streamingmedia interface

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L

0.0004 Low

EPSS

Percentile

9.1%

JSON

Memory Corruption in IMS while calling VoLTE Streamingmedia Interface

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Linux"
    ],
    "product": "Falcon",
    "vendor": "ASR",
    "versions": [
      {
        "lessThan": "CP01.057.063",
        "status": "unaffected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

References

www.asrmicro.com/en/goods/psirt?cid=31

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for CVELIST:CVE-2023-49699