4 matches found
CVE-2023-23303
creationtimestamp| type| source ---|---|--- 2023-05-24 00:40:24+00:00| seen| https://t.me/cibsecurity/64651 2025-01-21 15:00:49+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2412...
CVE-2023-23303
The Toybox.Ant.GenericChannel.enableEncryption API method in CIQ API version 3.2.0 through 4.1.7 does not validate its parameter, which can result in buffer overflows when copying various attributes. A malicious application could call the API method with specially crafted object and hijack the...
CVE-2023-23303
The CVE-2023-23303 vulnerability affects Garmin Connect IQ CIQ API (Toybox.Ant.GenericChannel.enableEncryption) across versions 3.2.0–4.1.7. The issue arises because the API does not validate its parameter, enabling buffer overflows when copying various attributes. A malicious application could c...
CVE-2023-23303
The Toybox.Ant.GenericChannel.enableEncryption API method in CIQ API version 3.2.0 through 4.1.7 does not validate its parameter, which can result in buffer overflows when copying various attributes. A malicious application could call the API method with specially crafted object and hijack the...