CVE-2023-48674

MEDIUM Year: 2023
CVSS v3 Score
4.9
Medium
Weakness Type
CWE-170
View all →

Vulnerability Description

Dell Platform BIOS contains an Improper Null Termination vulnerability. A high privilege user with network access to the system could potentially send malicious data to the device in order to cause some services to cease to function.

Related Vulnerabilities

CVE-2020-14323

MEDIUM
CVSS:5.5(Medium)

A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing ...

CWE-1702020

CVE-2020-7066

MEDIUM
CVSS:4.3(Medium)

In PHP versions 7.2.x below 7.2.29, 7.3.x below 7.3.16 and 7.4.x below 7.4.4, while using get_headers() with user-supplied URL, if the URL contains zero (\0) character, the URL will be silently trunca...

CWE-1702020

CVE-2021-1471

MEDIUM
CVSS:5.6(Medium)

Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating sy...

CWE-1702021

CVE-2019-11045

MEDIUM
CVSS:5.9(Medium)

In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0, PHP DirectoryIterator class accepts filenames with embedded \0 byte and treats them as terminating at that byte. This could lead to se...

CWE-1702019

CVE-2020-27736

MEDIUM
CVSS:6.5(Medium)

A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5....

CWE-1702020