A vulnerability has been identified in SiPass integrated (All versions < V2.90.3.8). Affected server applications improperly check the size of data packets received for the configuration client login, causing a stack-based buffer overflow.
This could allow an unauthenticated remote attacker to crash the server application, creating a denial of service condition.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-924149.pdf | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: siemens
Published: 2023-07-11T09:07:03.150Z
Updated: 2023-07-11T09:07:03.150Z
Reserved: 2022-05-30T10:21:52.587Z
Link: CVE-2022-31810
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-11T10:15:10.127
Modified: 2023-07-19T14:41:04.087
Link: CVE-2022-31810
JSON object: View
Redhat Information
No data.