1 results (0.002 seconds)
CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 0
CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 0CVE-2023-3036 – Out of Bounds Slice index in cfnts leads to remote panic
https://notcve.org/view.php?id=CVE-2023-3036
An unchecked read in NTP server in github.com/cloudflare/cfnts prior to commit 783490b https://github.com/cloudflare/cfnts/commit/783490b913f05e508a492cd7b02e3c4ec2297b71 enabled a remote attacker to trigger a panic by sending an NTSAuthenticator packet with extension length longer than the packet contents. • https://github.com/cloudflare/cfnts/security/advisories/GHSA-pwx6-gw47-96cp • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •