Buffer Copy Without Checking size of input in IMS
CVE-2023-49700

7.5HIGH

Key Information:

Vendor: ASR
Status: Falcon
Vendor: CVE Published:; 30 November 2023

What is CVE-2023-49700?

A buffer overflow vulnerability in Streamingmedia allows for a string operation to write past the end of a fixed-size destination buffer when the source buffer is excessively large. This issue occurs due to violations of security best practices, potentially leading to memory corruption and risks concerning user data integrity and application stability.

Affected Version(s)

Falcon Linux 0

References

https://www.asrmicro.com/en/goods/psirt?cid=31

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 30, 2023
Vulnerability Reserved
Nov 30, 2023

ASR

What is CVE-2023-49700?

Affected Version(s)

References

CVSS V3.1

Timeline