CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-24537 – Infinite loop in parsing in go/scanner
https://notcve.org/view.php?id=CVE-2023-24537
Calling any of the Parse functions on Go source code which contains //line directives with very large line numbers can cause an infinite loop due to integer overflow. A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an infinite loop due to integer overflow when calling any of the Parse functions. • https://go.dev/cl/482078 https://go.dev/issue/59180 https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8 https://pkg.go.dev/vuln/GO-2023-1702 https://security.gentoo.org/glsa/202311-09 https://access.redhat.com/security/cve/CVE-2023-24537 https://bugzilla.redhat.com/show_bug.cgi?id=2184484 • CWE-190: Integer Overflow or Wraparound CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 6.7EPSS: 0%CPEs: 48EXPL: 0CVE-2023-20682
https://notcve.org/view.php?id=CVE-2023-20682
In wlan, there is a possible out of bounds write due to an integer overflow. • https://corp.mediatek.com/product-security-bulletin/April-2023 • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.7EPSS: 0%CPEs: 36EXPL: 0CVE-2023-20661
https://notcve.org/view.php?id=CVE-2023-20661
In wlan, there is a possible out of bounds write due to an integer overflow. • https://corp.mediatek.com/product-security-bulletin/April-2023 • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.7EPSS: 0%CPEs: 35EXPL: 0CVE-2023-20663
https://notcve.org/view.php?id=CVE-2023-20663
In wlan, there is a possible out of bounds write due to an integer overflow. • https://corp.mediatek.com/product-security-bulletin/April-2023 • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.7EPSS: 0%CPEs: 36EXPL: 0CVE-2023-20662
https://notcve.org/view.php?id=CVE-2023-20662
In wlan, there is a possible out of bounds write due to an integer overflow. • https://corp.mediatek.com/product-security-bulletin/April-2023 • CWE-190: Integer Overflow or Wraparound •