Lucene search
PRIOn knowledge basePRION:CVE-2023-37536HistoryOct 11, 2023 - 7:15 a.m.
Integer overflow
2023-10-1107:15:00
PRIOn knowledge base
www.prio-n.com
9
integer overflow
xerces-c++
remote attackers
out-of-bound access
http request
An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out-of-bound access via HTTP request.
| CPE | Name | Operator | Version |
|---|---|---|---|
| xerces-c\\+\\+ | eq | 3.2.3 | |
| fedora | eq | 37 | |
| bigfix_platform | ge | 9.0.0 | |
| bigfix_platform | lt | 9.5.23 | |
| bigfix_platform | ge | 10.0.0 | |
| bigfix_platform | lt | 10.0.10 |
References
lists.debian.org/debian-lts-announce/2023/12/msg00027.html
lists.fedoraproject.org/archives/list/[email protected]/message/7A6WWL4SWKAVYK6VK5YN7KZP4MZWC7IY/
lists.fedoraproject.org/archives/list/[email protected]/message/AJYZUBGPVWJ7LEHRCMB5XVADQBNGURXD/
lists.fedoraproject.org/archives/list/[email protected]/message/DAOSSJ72CUJ535VRWTCVQKUYT2LYR3OM/
support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0107791
Related
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : xerces-c (SUSE-SU-2023:4715-1)
2023-12-12 00:00:00
Fedora 37 : mingw-xerces-c (2023-1332ed94a7)
2023-10-23 00:00:00
SUSE SLES12 Security Update : xerces-c (SUSE-SU-2023:4543-1)
2023-11-25 00:00:00
openvas
openvas
openSUSE: Security Advisory for xerces (SUSE-SU-2023:4586-1)
2024-03-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4715-1)
2023-12-12 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4543-1)
2023-11-27 00:00:00
osv
osv
xerces-c - security update
2023-12-31 00:00:00
xerces-c vulnerabilities
2024-01-18 18:21:32
nvd
nvd
CVE-2023-37536
2023-10-11 07:15:10
ubuntucve
ubuntucve
CVE-2023-37536
2023-10-11 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: mingw-xerces-c-3.2.4-1.fc37
2023-10-23 01:25:07
[SECURITY] Fedora 38 Update: xerces-c-3.2.5-1.fc38
2023-12-31 01:20:21
[SECURITY] Fedora 39 Update: xerces-c-3.2.5-1.fc39
2023-12-31 02:27:38
redos
redos
ROS-20240329-22
2024-03-29 00:00:00
amazon
amazon
Important: xerces-c
2023-10-30 23:59:00
cve
cve
CVE-2023-37536
2023-10-11 07:15:10
debiancve
debiancve
CVE-2023-37536
2023-10-11 07:15:10
redhatcve
redhatcve
CVE-2023-37536
2023-10-12 01:12:41
cvelist
cvelist
ubuntu
ubuntu
Xerces-C++ vulnerabilities
2024-01-18 00:00:00
debian
debian
[SECURITY] [DLA 3704-1] xerces-c security update
2023-12-31 11:26:56
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00