Lucene search
+L

4 matches found

Circl
Circl
added 2023/05/24 12:40 a.m.9 views

CVE-2023-23303

creationtimestamp| type| source ---|---|--- 2023-05-24 00:40:24+00:00| seen| https://t.me/cibsecurity/64651 2025-01-21 15:00:49+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2412...

9.8CVSS7.3AI score0.00792EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/05/23 8:15 p.m.4 views

CVE-2023-23303

The Toybox.Ant.GenericChannel.enableEncryption API method in CIQ API version 3.2.0 through 4.1.7 does not validate its parameter, which can result in buffer overflows when copying various attributes. A malicious application could call the API method with specially crafted object and hijack the...

9.8CVSS7.5AI score0.00792EPSS
Exploits1References3
CVE
CVE
added 2023/05/23 12:0 a.m.47 views

CVE-2023-23303

The CVE-2023-23303 vulnerability affects Garmin Connect IQ CIQ API (Toybox.Ant.GenericChannel.enableEncryption) across versions 3.2.0–4.1.7. The issue arises because the API does not validate its parameter, enabling buffer overflows when copying various attributes. A malicious application could c...

9.8CVSS9.4AI score0.00792EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/05/23 12:0 a.m.21 views

CVE-2023-23303

The Toybox.Ant.GenericChannel.enableEncryption API method in CIQ API version 3.2.0 through 4.1.7 does not validate its parameter, which can result in buffer overflows when copying various attributes. A malicious application could call the API method with specially crafted object and hijack the...

9.7AI score0.00792EPSS
Exploits1References2
Rows per page
Query Builder