CVE-2023-20812

MEDIUM Year: 2023
CVSS v3 Score
4.4
Medium
Weakness Type
CWE-787
View all →

Vulnerability Description

In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944987; Issue ID: ALPS07944987.

Related Vulnerabilities

CVE-2016-5238

MEDIUM
CVSS:4.4(Medium)

The get_cmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to reading from th...

CWE-7872016

CVE-2019-3701

MEDIUM
CVSS:4.4(Medium)

An issue was discovered in can_can_gw_rcv in net/can/gw.c in the Linux kernel through 4.19.13. The CAN frame modification rules allow bitwise logical operations that can be also applied to the can_dlc...

CWE-7872019

CVE-2020-12358

MEDIUM
CVSS:4.4(Medium)

Out of bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via local access.

CWE-7872020

CVE-2020-24480

MEDIUM
CVSS:4.4(Medium)

Out-of-bounds write in the Intel(R) XTU before version 6.5.3.25 may allow a privileged user to potentially enable denial of service via local access.

CWE-7872020

CVE-2021-20491

MEDIUM
CVSS:4.4(Medium)

IBM Spectrum Protect Server 7.1 and 8.1 is subject to a stack-based buffer overflow caused by improper bounds checking during the parsing of commands. By issuing such a command with an improper parame...

CWE-7872021

CVE-2022-36382

MEDIUM
CVSS:4.4(Medium)

Out-of-bounds write in firmware for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 1.7.0.8 and some Intel(R) Ethernet 700 Series Controllers and Adapters before ver...

CWE-7872022