Lucene search
K

1171 matches found

OSV
OSV
added 2023/11/14 10:15 a.m.32 views

CVE-2023-31247

A memory corruption vulnerability exists in the HTTP Server Host header parsing functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9.8CVSS7.3AI score
Exploits0References2
NVD
NVD
added 2023/11/14 10:15 a.m.22 views

CVE-2023-27882

A heap-based buffer overflow vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9.8CVSS0.01778EPSS
Exploits1References2
NVD
NVD
added 2023/11/14 10:15 a.m.23 views

CVE-2023-28379

A memory corruption vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9.8CVSS0.01672EPSS
Exploits1References2
OSV
OSV
added 2023/11/14 10:15 a.m.29 views

CVE-2023-28379

A memory corruption vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9.8CVSS7.3AI score
Exploits0References2
OSV
OSV
added 2023/11/14 10:15 a.m.32 views

CVE-2023-27882

A heap-based buffer overflow vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9.8CVSS7.5AI score
Exploits0References2
NVD
NVD
added 2023/11/14 10:15 a.m.20 views

CVE-2023-24585

An out-of-bounds write vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to memory corruption. An attacker can send a network request to trigger this vulnerability...

9.8CVSS0.01209EPSS
Exploits1References2
OSV
OSV
added 2023/11/14 10:15 a.m.21 views

CVE-2023-24585

An out-of-bounds write vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to memory corruption. An attacker can send a network request to trigger this vulnerability...

9.8CVSS6.8AI score
Exploits0References2
Prion
Prion
added 2023/11/14 10:15 a.m.21 views

Design/Logic Flaw

An out-of-bounds write vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to memory corruption. An attacker can send a network request to trigger this vulnerability...

7.5CVSS7.1AI score0.01209EPSS
Exploits1References1Affected Software3
Prion
Prion
added 2023/11/14 10:15 a.m.22 views

Memory corruption

A memory corruption vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

7.5CVSS7.8AI score0.01672EPSS
Exploits1References1Affected Software3
Prion
Prion
added 2023/11/14 10:15 a.m.22 views

Memory corruption

A memory corruption vulnerability exists in the HTTP Server Host header parsing functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

7.5CVSS7.5AI score0.01672EPSS
Exploits1References1Affected Software3
Prion
Prion
added 2023/11/14 10:15 a.m.29 views

Heap overflow

A heap-based buffer overflow vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

7.5CVSS8.1AI score0.01778EPSS
Exploits1References1Affected Software3
Cvelist
Cvelist
added 2023/11/14 9:14 a.m.26 views

CVE-2023-24585

An out-of-bounds write vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to memory corruption. An attacker can send a network request to trigger this vulnerability...

7.7CVSS9.6AI score0.01209EPSS
Exploits1References1
CVE
CVE
added 2023/11/14 9:14 a.m.84 views

CVE-2023-24585

CVE-2023-24585 affects Weston Embedded uC-HTTP v3.01.01, specifically the HTTP Server functionality. The vulnerability is an out-of-bounds write that occurs while parsing an HTTP request method, which can lead to memory corruption (including heap corruption). An attacker can trigger this by sendi...

9.8CVSS9.3AI score0.01209EPSS
Exploits1References2Affected Software3
CVE
CVE
added 2023/11/14 9:14 a.m.73 views

CVE-2023-27882

Talos advisory TALOS-2023-1733 documents a heap-based buffer overflow in Weston Embedded uC-HTTP server form boundary handling (v3.01.01), enabling code execution via a specially crafted network packet. Affected products/versions listed: Weston Embedded uC-HTTP v3.01.01, Cesium NET 3.07.01, Silic...

9.8CVSS9.6AI score0.01778EPSS
Exploits1References2Affected Software3
Cvelist
Cvelist
added 2023/11/14 9:14 a.m.27 views

CVE-2023-27882

A heap-based buffer overflow vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9CVSS9.9AI score0.01778EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/11/14 9:14 a.m.27 views

CVE-2023-28379

A memory corruption vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9CVSS9.9AI score0.01672EPSS
Exploits1References1
CVE
CVE
added 2023/11/14 9:14 a.m.77 views

CVE-2023-28379

Cisco Talos details a normal-mode vulnerability: CVE-2023-28379 is a memory corruption in Weston Embedded uC-HTTP HTTP Server form boundary handling (uC-HTTP v3.01.01). TALOS-2023-1738 confirms the issue as a heap-based overflow when parsing the form boundary string, where the boundary length is ...

9.8CVSS9.6AI score0.01672EPSS
Exploits1References2Affected Software3
Vulnrichment
Vulnrichment
added 2023/11/14 9:14 a.m.13 views

CVE-2023-27882

A heap-based buffer overflow vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9CVSS7.5AI score0.01778EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/11/14 9:14 a.m.20 views

CVE-2023-28379

A memory corruption vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9CVSS7.3AI score0.01672EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/11/14 9:14 a.m.15 views

CVE-2023-31247

A memory corruption vulnerability exists in the HTTP Server Host header parsing functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability...

9CVSS7.3AI score0.01672EPSS
Exploits1References1
Rows per page
Query Builder