2 matches found
CVE-2023-28391
CVE-2023-28391 : Talos reports a memory corruption vulnerability in Weston Embedded uC-HTTP v3.01.01’s HTTP Server header parsing. A crafted network packet can trigger a one-byte NULL overwrite during header value length handling, which, via heap corruption in uC-LIB Mem_DynPool, may allow an att...
Weston Embedded uC-HTTP HTTP Server memory corruption vulnerability
Talos Vulnerability Report TALOS-2023-1732 Weston Embedded uC-HTTP HTTP Server memory corruption vulnerability November 14, 2023 CVE Number CVE-2023-28391 SUMMARY A memory corruption vulnerability exists in the HTTP Server header parsing functionality of Weston Embedded uC-HTTP v3.01.01. Speciall...