Lucene search
K

24 matches found

Cvelist
Cvelist
added 2023/05/23 12:0 a.m.16 views

CVE-2023-23305

The GarminOS TVM component in CIQ API version 1.0.0 through 4.1.7 is vulnerable to various buffer overflows when loading binary resources. A malicious application embedding specially crafted resources could hijack the execution of the device's firmware...

9.6AI score0.01274EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/05/23 12:0 a.m.28 views

CVE-2023-23304

The GarminOS TVM component in CIQ API version 2.1.0 through 4.1.7 allows applications with a specially crafted head section to use the Toybox.SensorHistory module without permission. A malicious application could call any functions from the Toybox.SensorHistory module without the user's consent a...

9.1AI score0.00612EPSS
Exploits1References2
CVE
CVE
added 2023/05/23 12:0 a.m.45 views

CVE-2023-23304

The CVE-2023-23304 entry concerns GarminOS CIQ/TVM (Garmin Connect IQ): CIQ API versions 2.1.0 through 4.1.7 allow a specially crafted head section to access the Toybox.SensorHistory module without user consent, enabling a malicious app to call functions in that module and potentially disclose pr...

9.1CVSS8.8AI score0.00612EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/23 12:0 a.m.10 views

CVE-2023-23304

The GarminOS TVM component in CIQ API version 2.1.0 through 4.1.7 allows applications with a specially crafted head section to use the Toybox.SensorHistory module without permission. A malicious application could call any functions from the Toybox.SensorHistory module without the user's consent a...

9AI score0.00612EPSS
Exploits1References2
Rows per page
Query Builder