CVE-2023-31339

MEDIUM Year: 2023
CVSS v3 Score
5.8
Medium
Weakness Type
CWE-20
View all →

Vulnerability Description

Improper input validation in ARM® Trusted Firmware used in AMD’s Zynq™ UltraScale+™) MPSoC/RFSoC may allow a privileged attacker to perform out of bound reads, potentially resulting in data leakage and denial of service.

Related Vulnerabilities

CVE-2015-7282

MEDIUM
CVSS:5.8(Medium)

ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the des...

CWE-202015

CVE-2015-7794

MEDIUM
CVSS:5.8(Medium)

Corega CG-WLNCM4G devices provide an open DNS resolver, which allows remote attackers to cause a denial of service (traffic amplification) via crafted queries.

CWE-202015

CVE-2017-0179

MEDIUM
CVSS:5.8(Medium)

A denial of service vulnerability exists when Microsoft Hyper-V running on a Windows 10, Windows 8.1, Windows Server 2012 R2, or Windows Server 2016 host server fails to properly validate input from a...

CWE-202017

CVE-2017-0182

MEDIUM
CVSS:5.8(Medium)

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch running on a Windows 10, Windows Server 2008 R2, Windows 8.1, Windows Server 2012 R2, or Windows Server 2016 host server ...

CWE-202017

CVE-2017-0183

MEDIUM
CVSS:5.8(Medium)

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch running on a Windows 10, Windows Server 2008 R2, Windows 8.1, Windows Server 2012 R2, or Windows Server 2016 host server ...

CWE-202017

CVE-2017-0185

MEDIUM
CVSS:5.8(Medium)

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch running on a Windows 10, Windows 8.1, Windows Server 2012, Windows Server 2012 R2, or Windows Server 2016 host server fai...

CWE-202017