CVE-2023-49700

Security best practices violations, a string operation in Streamingmedia will write past the end of fixed-size destination buffer if the source buffer is too large.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:asrmicro:asr1803_firmware:cp01.057.063:*:*:*:*:*:*:*
cpe:2.3:h:asrmicro:asr1803:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:asrmicro:asr1806_firmware:cp01.057.063:*:*:*:*:*:*:*
cpe:2.3:h:asrmicro:asr1806:-:*:*:*:*:*:*:*

History

21 Nov 2024, 08:33

Type Values Removed Values Added
References () https://www.asrmicro.com/en/goods/psirt?cid=31 - Vendor Advisory () https://www.asrmicro.com/en/goods/psirt?cid=31 - Vendor Advisory
CVSS v2 : unknown
v3 : 7.5
v2 : unknown
v3 : 6.7

05 Dec 2023, 18:08

Type Values Removed Values Added
References () https://www.asrmicro.com/en/goods/psirt?cid=31 - () https://www.asrmicro.com/en/goods/psirt?cid=31 - Vendor Advisory
CWE CWE-120
CPE cpe:2.3:h:asrmicro:asr1803:-:*:*:*:*:*:*:*
cpe:2.3:h:asrmicro:asr1806:-:*:*:*:*:*:*:*
cpe:2.3:o:asrmicro:asr1803_firmware:cp01.057.063:*:*:*:*:*:*:*
cpe:2.3:o:asrmicro:asr1806_firmware:cp01.057.063:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5

30 Nov 2023, 07:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-30 07:15

Updated : 2024-11-21 08:33


NVD link : CVE-2023-49700

Mitre link : CVE-2023-49700

CVE.ORG link : CVE-2023-49700


JSON object : View

Products Affected

asrmicro

  • asr1803
  • asr1806
  • asr1803_firmware
  • asr1806_firmware
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')