58 matches found
Type confusion
The Toybox.Ant.BurstPayload.add API method in CIQ API version 2.2.0 through 4.1.7 suffers from a type confusion vulnreability, which can result in an out-of-bounds write operation. A malicious application could create a specially crafted Toybox.Ant.BurstPayload object, call its add method, overri...
Information disclosure
The GarminOS TVM component in CIQ API version 2.1.0 through 4.1.7 allows applications with a specially crafted head section to use the Toybox.SensorHistory module without permission. A malicious application could call any functions from the Toybox.SensorHistory module without the user's consent a...
CVE-2023-23300
The Toybox.Cryptography.Cipher.initialize API method in CIQ API version 3.0.0 through 4.1.7 does not validate its parameters, which can result in buffer overflows when copying data. A malicious application could call the API method with specially crafted parameters and hijack the execution of the...
CVE-2023-23300
The CVE concerns Garmin Connect IQ (CIQ): Toybox.Cryptography.Cipher.initialize in CIQ API versions 3.0.0–4.1.7 does not validate parameters, enabling buffer overflows when copying data. This could let a malicious app hijack firmware execution (high risk, per CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H...
CVE-2023-23306
The Toybox.Ant.BurstPayload.add API method in CIQ API version 2.2.0 through 4.1.7 suffers from a type confusion vulnreability, which can result in an out-of-bounds write operation. A malicious application could create a specially crafted Toybox.Ant.BurstPayload object, call its add method, overri...
PT-2023-18899 · Garmin · Ciq Api +1
Name of the Vulnerable Software and Affected Versions: GarminOS TVM component in CIQ API versions 2.1.0 through 4.1.7 Description: The issue allows applications with a specially crafted head section to use the Toybox.SensorHistory module without permission. A malicious application could call any...
CVE-2023-23298
The Toybox.Graphics.BufferedBitmap.initialize API method in CIQ API version 2.3.0 through 4.1.7 does not validate its parameters, which can result in integer overflows when allocating the underlying bitmap buffer. A malicious application could call the API method with specially crafted parameters...
CVE-2023-23302
Summary of CVE-2023-23302 (Ciq API): The vulnerability affects CIQ API versions 1.2.0 through 4.1.7, specifically the Toybox.GenericChannel.setDeviceConfig method. The issue is that the API does not validate its parameter, which can cause buffer overflows when copying various attributes. This can...
CVE-2023-23306
CVE-2023-23306 affects Garmin Connect IQ (CIQ) API: Toybox.Ant.BurstPayload.add in CIQ API versions 2.2.0 through 4.1.7 suffers a type confusion leading to an out-of-bounds write. A malicious app could craft a Toybox.Ant.BurstPayload object, call add, override arbitrary memory, and hijack firmwar...
CVE-2023-23303
The CVE-2023-23303 vulnerability affects Garmin Connect IQ CIQ API (Toybox.Ant.GenericChannel.enableEncryption) across versions 3.2.0–4.1.7. The issue arises because the API does not validate its parameter, enabling buffer overflows when copying various attributes. A malicious application could c...
CVE-2022-32298
Toybox v0.8.7 was discovered to contain a NULL pointer dereference via the component httpd.c. This vulnerability can lead to a Denial of Service DoS via unspecified vectors...
CVE-2022-32298
Toybox v0.8.7 was discovered to contain a NULL pointer dereference via the component httpd.c. This vulnerability can lead to a Denial of Service DoS via unspecified vectors...
CVE-2022-32298
Toybox v0.8.7 was discovered to contain a NULL pointer dereference via the component httpd.c. This vulnerability can lead to a Denial of Service DoS via unspecified vectors...
Null pointer dereference
Toybox v0.8.7 was discovered to contain a NULL pointer dereference via the component httpd.c. This vulnerability can lead to a Denial of Service DoS via unspecified vectors...
CVE-2022-32298
CVE-2022-32298 concerns Toybox v0.8.7, with a vulnerability in the component httpd.c causing a NULL pointer dereference . The effect is a potential Denial of Service (DoS) , described as achievable via unspecified vectors. The connected documents consistently identify the vulnerable artifact as T...
CVE-2022-32298
Toybox v0.8.7 was discovered to contain a NULL pointer dereference via the component httpd.c. This vulnerability can lead to a Denial of Service DoS via unspecified vectors...
CVE-2022-32298
Toybox v0.8.7 was discovered to contain a NULL pointer dereference via the component httpd.c. This vulnerability can lead to a Denial of Service DoS via unspecified vectors...
Toybox 代码问题漏洞
Toybox is an all-in-one Linux command line from Rob Landley, an individual developer in the United States. A security vulnerability exists in Toybox version v0.8.7, which stems from the inclusion of a null pointer dereference in httpd.c, and can be exploited by an attacker to cause a denial of...