How severe is CVE-2023-50763?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.9 out of 10.

What type of vulnerability is CVE-2023-50763?

This is classified as CWE-835, which is a common weakness in software security.

CVE-2023-50763

MEDIUM Year: 2023

CVSS v3 Score

4.9

Medium

Weakness Type

CWE-835

View all →

Vulnerability Description

A vulnerability has been identified in SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0) (All versions < V2.3), SIMATIC CP 1542SP-1 IRC (6GK7542-6VX00-0XE0) (All versions < V2.3), SIMATIC CP 1543SP-1 (6GK7543-6WX00-0XE0) (All versions < V2.3), SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL (6AG2542-6VX00-4XE0) (All versions < V2.3), SIPLUS ET 200SP CP 1543SP-1 ISEC (6AG1543-6WX00-7XE0) (All versions < V2.3), SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (6AG2543-6WX00-4XE0) (All versions < V2.3), SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0) (All versions < V2.4.8), TIM 1531 IRC (6GK7543-1MX00-0XE0) (All versions < V2.4.8). The web server of affected products, if configured to allow the import of PKCS12 containers, could end up in an infinite loop when processing incomplete certificate chains. This could allow an authenticated remote attacker to create a denial of service condition by importing specially crafted PKCS12 containers.

CVE-2024-32886

MEDIUM

CVSS:4.9(Medium)

Vitess is a database clustering system for horizontal scaling of MySQL. When executing the following simple query, the `vtgate` will go into an endless loop that also keeps consuming memory and eventu...

CWE-8352024

CVE-2024-35982

MEDIUM

CVSS:5.1(Medium)

In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid infinite loop trying to resize local TT If the MTU of one of an attached interface becomes too small to transmit t...

CWE-8352024

CVE-2018-20482

MEDIUM

CVSS:4.7(Medium)

GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of service (infinite read loop in sparse_dump_region in sparse.c) ...

CWE-8352018

CVE-2023-4010

MEDIUM

CVSS:4.6(Medium)

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb_giveback_urb function has a logic loophole in its implementation. Due to the inappropriate judgment condition ...

CWE-8352023

CVE-2017-15223

MEDIUM

CVSS:5.3(Medium)

Denial-of-service vulnerability in ArGoSoft Mini Mail Server 1.0.0.2 and earlier allows remote attackers to waste CPU resources (memory consumption) via unspecified vectors, possibly triggering an inf...

CWE-8352017

CVE-2018-9251

MEDIUM

CVSS:5.3(Medium)

The xz_decomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERRO...

CWE-8352018

CVE-2023-50763

Vulnerability Description

Related Vulnerabilities

CVE-2024-32886

CVE-2024-35982

CVE-2018-20482

CVE-2023-4010

CVE-2017-15223

CVE-2018-9251