CVE-2023-52389 | POCO up to 1.11.8p1/1.12.5p1 UTF32Encoding.cpp convert stack-based overflow (Issue 4320)

Inserito da Angelo Barbosa | Gen 27, 2024 | CVE

A vulnerability classified as critical was found in POCO up to 1.11.8p1/1.12.5p1. This vulnerability affects the function Poco::UTF32Encoding::convert of the file UTF32Encoding.cpp. The manipulation leads to stack-based buffer overflow.

This vulnerability was named CVE-2023-52389. The attack can only be initiated within the local network. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2023-52389 | POCO up to 1.11.8p1/1.12.5p1 UTF32Encoding.cpp convert stack-based overflow (Issue 4320)

Post correlati

CVE-2023-46351 | MyPresta.eu Module Mib up to 1.6.0 on PrestaShop getManufacturersByCategory sql injection

CVE-2023-38018 | IBM Aspera Shares 1.10.0 PL2 Password Change session fixiation (XFDB-260574)

CVE-2024-0267 | Kashipara Hospital Management System up to 1.0 Parameter login.php email/password sql injection

CVE-2024-4301 | N-Partner N-Reporter/N-Cloud prior 6.1.187 os command injection