Lucene search
+L

7 matches found

NVD
NVD
added 2023/03/28 7:15 p.m.22 views

CVE-2022-23125

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the copyapplfile function. When parsing the len element, the process does not properly validate...

9.8CVSS9.7AI score0.04354EPSS
Exploits0References6
Prion
Prion
added 2023/03/28 7:15 p.m.68 views

Stack overflow

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the copyapplfile function. When parsing the len element, the process does not properly validate...

7.5CVSS9.6AI score0.04354EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2023/03/28 12:0 a.m.31 views

CVE-2022-23125

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the copyapplfile function. When parsing the len element, the process does not properly validate...

9.8CVSS9.8AI score0.04354EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2023/03/28 12:0 a.m.48 views

CVE-2022-23125

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the copyapplfile function. When parsing the len element, the process does not properly validate...

9.8CVSS9.7AI score0.04354EPSS
Exploits0
CVE
CVE
added 2023/03/28 12:0 a.m.588 views

CVE-2022-23125

Netatalk CVE-2022-23125 is a remote, unauthenticated code execution flaw in the copyapplfile function where len validation for user data can overflow a fixed-size stack buffer. Affected product: Netatalk (AFP) 3.1.x. Root context: multiple sources confirm root-level impact and disclosure of this ...

9.8CVSS9.5AI score0.04354EPSS
In wildExploits0References6Affected Software1
AlpineLinux
AlpineLinux
added 2023/03/28 12:0 a.m.47 views

CVE-2022-23125

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the copyapplfile function. When parsing the len element, the process does not properly validate...

9.8CVSS9.7AI score0.04354EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/04/14 12:0 a.m.39 views

SUSE SLED12 / SLES12 Security Update : netatalk (SUSE-SU-2022:1184-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1184-1 advisory. - CVE-2022-23125: Fixed remote arbitrary code execution related to copyapplfile. - CVE-2022-23121: Fixed remot...

9.8CVSS8.2AI score0.08594EPSS
Exploits0References8
Rows per page
Query Builder