Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.5
CVSSv3

CVE-2023-42364

Published: 27/11/2023 Updated: 30/11/2023
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Busybox

Vulnerability Summary

A use-after-free vulnerability in BusyBox v.1.36.1 allows malicious users to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.

Vulnerable Product Search on Vulmon Subscribe to Product

busybox busybox 1.36.1

Vendor Advisories

Debian CVElist Bug Report Logs: busybox: CVE-2023-42364
Debian Bug report logs - #1059051 busybox: CVE-2023-42364 Package: src:busybox; Maintainer for src:busybox is Debian Install System Team <debian-boot@listsdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Tue, 19 Dec 2023 21:21:05 UTC Severity: important Tags: security, upstream Forwarded to ht ...
Red Hat:
DescriptionThe MITRE CVE dictionary describes this issue as: A use-after-free vulnerability in BusyBox v1361 allows attackers to cause a denial of service via a crafted awk pattern in the awkc evaluate function ...

References

CWE-416https://bugs.busybox.net/show_bug.cgi?id=15868https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059051https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2023-42364
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook