3 matches found
CVE-2023-23301
The news MonkeyC operation code in CIQ API version 1.0.0 through 4.1.7 fails to check that string resources are not extending past the end of the expected sections. A malicious CIQ application could craft a string that starts near the end of a section, and whose length extends past its end. Upon...
CVE-2023-23301
The CVE-2023-23301 issue affects CIQ API versions 1.0.0 through 4.1.7, where the news MonkeyC operation code fails to ensure string resources don’t extend past section boundaries. This can allow a malicious CIQ application to craft a string starting near a section end whose length overflows past ...
CVE-2023-23301
The news MonkeyC operation code in CIQ API version 1.0.0 through 4.1.7 fails to check that string resources are not extending past the end of the expected sections. A malicious CIQ application could craft a string that starts near the end of a section, and whose length extends past its end. Upon...