Lucene search

PRIOn knowledge basePRION:CVE-2023-27882

HistoryNov 14, 2023 - 10:15 a.m.

Heap overflow

2023-11-1410:15:00

PRIOn knowledge base

www.prio-n.com

http server

buffer overflow

vulnerability

weston

embedded

code execution

network packet

attacker

malicious

8.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

45.0%

JSON

A heap-based buffer overflow vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. A specially crafted network packet can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability.

CPENameOperatorVersion
gecko_software_development_kiteq4.3.1
cesium_neteq3.07.01
uc-httpeq3.01.01

Name	Operator	Version
gecko_software_development_kit	eq	4.3.1
cesium_net	eq	3.07.01
uc-http	eq	3.01.01

References

talosintelligence.com/vulnerability_reports/TALOS-2023-1733