How severe is CVE-2023-42757?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.2 out of 10.

What type of vulnerability is CVE-2023-42757?

This is classified as CWE-120, which is a common weakness in software security.

CVE-2023-42757

MEDIUM Year: 2023

CVSS v3 Score

4.2

Medium

Weakness Type

CWE-120

View all →

Vulnerability Description

Process Explorer before 17.04 allows attackers to make it functionally unavailable (a denial of service for analysis) by renaming an executable file to a new extensionless 255-character name and launching it with NtCreateUserProcess. This can occur through an issue in wcscat_s error handling.

CVE-2024-37816

MEDIUM

CVSS:4.2(Medium)

Quectel EC25-EUX EC25EUXGAR08A05M1G was discovered to contain a stack overflow.

CWE-1202024

CVE-2019-20739

MEDIUM

CVSS:4.3(Medium)

NETGEAR R8500 devices before v1.0.2.128 are affected by a buffer overflow by an unauthenticated attacker.

CWE-1202019

CVE-2020-8261

MEDIUM

CVSS:4.3(Medium)

A vulnerability in the Pulse Connect Secure / Pulse Policy Secure < 9.1R9 is vulnerable to arbitrary cookie injection.

CWE-1202020

CVE-2021-33680

MEDIUM

CVSS:4.3(Medium)

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated CGM file received from untrusted sources which causes buffer overflow and causes the application to crash and becoming t...

CWE-1202021

CVE-2021-34775

MEDIUM

CVSS:4.3(Medium)

Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business 220 Series Smart Switches. An unauthenticated, adjacent attacker could perform the fo...

CWE-1202021