CVE-2023-50433

MEDIUM Year: 2023
CVSS v3 Score
6.5
Medium
Weakness Type
CWE-843
View all →

Vulnerability Description

marshall in dhcp_packet.c in simple-dhcp-server through ec976d2 allows remote attackers to cause a denial of service by sending a malicious DHCP packet. The crash is caused by a type confusion bug that results in a large memory allocation; when this memory allocation fails the DHCP server will crash.

Related Vulnerabilities

CVE-2017-5094

MEDIUM
CVSS:6.5(Medium)

Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify objects via a c...

CWE-8432017

CVE-2019-11750

MEDIUM
CVSS:6.5(Medium)

A type confusion vulnerability exists in Spidermonkey, which results in a non-exploitable crash. This vulnerability affects Firefox < 69 and Firefox ESR < 68.1.

CWE-8432019

CVE-2022-1869

MEDIUM
CVSS:6.5(Medium)

Type Confusion in V8 in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CWE-8432022

CVE-2022-21731

MEDIUM
CVSS:6.5(Medium)

Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `ConcatV2` can be used to trigger a denial of service attack via a segfault caused by a type confusio...

CWE-8432022

CVE-2022-21734

MEDIUM
CVSS:6.5(Medium)

Tensorflow is an Open Source Machine Learning Framework. The implementation of `MapStage` is vulnerable a `CHECK`-fail if the key tensor is not a scalar. The fix will be included in TensorFlow 2.8.0. ...

CWE-8432022

CVE-2023-24944

MEDIUM
CVSS:6.5(Medium)

Windows Bluetooth Driver Information Disclosure Vulnerability

CWE-8432023