Lucene search
K

5 matches found

Talos Blog
Talos Blog
added 2023/05/10 3:44 p.m.24 views

Vulnerability Spotlight: Authentication bypass, use-after-free vulnerabilities found in a library for the µC/OS open-source operating system

Kelly Leuschner of Cisco Talos discovered these vulnerabilities. Cisco Talos recently discovered two vulnerabilities in a library for µC/OS, an open-source operating system developed by Micrium. µC/OS is an embedded operating system that supports TCP/IP, USB, CAN bus and Modbus. The two...

5CVSS6.5AI score0.01488EPSS
Exploits3
Cvelist
Cvelist
added 2023/05/10 3:23 p.m.49 views

CVE-2022-46377

An out-of-bounds read vulnerability exists in the PORT command parameter extraction functionality of Weston Embedded uC-FTPs v 1.98.00. A specially-crafted set of network packets can lead to denial of service. An attacker can send packets to trigger this vulnerability.This vulnerability occurs wh...

6.5CVSS7.6AI score0.0148EPSS
Exploits1References2
CVE
CVE
added 2023/05/10 3:23 p.m.46 views

CVE-2022-46377

Weston Embedded uC-FTPs 1.98.00 has an out-of-bounds read in the PORT command argument extraction. When no IP address argument is provided to PORT, the server may misparse the buffer, potentially leading to denial of service. Concrete details in Talos/TALOS-2022-1681 describe the vulnerable code ...

7.5CVSS7.4AI score0.0148EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/10 3:23 p.m.13 views

CVE-2022-46377

An out-of-bounds read vulnerability exists in the PORT command parameter extraction functionality of Weston Embedded uC-FTPs v 1.98.00. A specially-crafted set of network packets can lead to denial of service. An attacker can send packets to trigger this vulnerability.This vulnerability occurs wh...

6.5CVSS7.5AI score0.0148EPSS
Exploits1References2
Talos
Talos
added 2023/05/10 12:0 a.m.44 views

Weston Embedded uC-FTPs PORT command parameter extraction out-of-bounds read vulnerability

Talos Vulnerability Report TALOS-2022-1681 Weston Embedded uC-FTPs PORT command parameter extraction out-of-bounds read vulnerability May 10, 2023 CVE Number CVE-2022-46377,CVE-2022-46378 SUMMARY An out-of-bounds read vulnerability exists in the PORT command parameter extraction functionality of...

7.5CVSS7AI score0.0148EPSS
Exploits2
Rows per page
Query Builder