Published: 11/10/2023 Updated: 31/12/2023

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote malicious users to cause out-of-bound access via HTTP request.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hcltech bigfix platform
apache xerces-c\\+\\+ 3.2.3
fedoraproject fedora 37

An integer overflow in xerces-c++ 323 in BigFix Platform allows remote attackers to cause out-of-bound access via HTTP request (CVE-2023-37536) ...

DescriptionThe MITRE CVE dictionary describes this issue as: An integer overflow in xerces-c++ 323 in BigFix Platform allows remote attackers to cause out-of-bound access via HTTP request ...

CWE-190 https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0107791 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DAOSSJ72CUJ535VRWTCVQKUYT2LYR3OM/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A6WWL4SWKAVYK6VK5YN7KZP4MZWC7IY/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AJYZUBGPVWJ7LEHRCMB5XVADQBNGURXD/https://lists.debian.org/debian-lts-announce/2023/12/msg00027.html https://nvd.nist.gov https://alas.aws.amazon.com/AL2/ALAS-2023-2327.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-37536

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect