5 matches found
CVE-2023-31475
An issue was discovered on GL.iNet devices before 3.216. The function guci2get found in libglutil.so has a buffer overflow when an item is requested from a UCI context, and the value is pasted into a char pointer to a buffer without checking the size of the buffer...
CVE-2023-31475
An issue was discovered on GL.iNet devices before 3.216. The function guci2get found in libglutil.so has a buffer overflow when an item is requested from a UCI context, and the value is pasted into a char pointer to a buffer without checking the size of the buffer...
CVE-2023-31475
GL.iNet devices prior to 3.216 are affected by a buffer overflow in libglutil.so: the guci2_get() function copies a UCI-context value into a buffer without checking size, potentially compromising confidentiality, integrity, and availability. Public sources (NVD/Red Hat) confirm the same issue and...
CVE-2023-31475
An issue was discovered on GL.iNet devices before 3.216. The function guci2get found in libglutil.so has a buffer overflow when an item is requested from a UCI context, and the value is pasted into a char pointer to a buffer without checking the size of the buffer...
CVE-2023-33622
GL.iNet devices prior to version 3.216 are affected by a buffer overflow in libglutil.so: the guci2_get() function copies a UCI context item into a buffer without checking size, potentially leading to memory corruption. Impact is unspecified in public text; the issue is mitigated by upgrading to ...