CVE-2023-7152 | MicroPython 1.21.0/1.22.0-preview extmod/modselect.c poll_set_add_fd use after free

Posted by Angelo Barbosa | Dec 28, 2023 | CVE

A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1.22.0-preview. Affected by this issue is the function poll_set_add_fd of the file extmod/modselect.c. The manipulation leads to use after free.

This vulnerability is handled as CVE-2023-7152. The attack needs to be approached within the local network. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2023-7152 | MicroPython 1.21.0/1.22.0-preview extmod/modselect.c poll_set_add_fd use after free

Related Posts

CVE-2024-1851 | affiliate-toolkit Plugin up to 3.5.4 on WordPress atkp_create_list authorization

CVE-2023-6884 | Plugin for Google Reviews up to 3.1 on WordPress Shortcode cross site scripting

CVE-2024-3782 | White Bear Solutions WBSAirback 21.02.04 cross-site request forgery

CVE-2024-1391 | webtechstreet Elementor Addon Elements Plugin up to 1.12.12 on WordPress eae_custom_overlay_switcher cross site scripting