How severe is CVE-2023-51456?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.8 out of 10.

What type of vulnerability is CVE-2023-51456?

This is classified as CWE-125, which is a common weakness in software security.

CVE-2023-51456

MEDIUM Year: 2023

CVSS v3 Score

6.8

Medium

Weakness Type

CWE-125

View all →

Vulnerability Description

A Improper Input Validation issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an attacker to trigger an out-of-bound read/write into the process memory through a crafted payload due to a missing input sanity check in the v2_pack_array_to_msg function implemented in the libv2_sdk.so library imported by the v2_sdk_service binary implementing the service, potentially leading to a memory information leak or an arbitrary code execution. Affected models are Mavic 3 Pro until v01.01.0300, Mavic 3 until v01.00.1200, Mavic 3 Classic until v01.00.0500, Mavic 3 Enterprise until v07.01.10.03, Matrice 300 until v57.00.01.00, Matrice M30 until v07.01.0022 and Mini 3 Pro until v01.00.0620.

CVE-2018-3956

MEDIUM

CVSS:6.8(Medium)

An exploitable out-of-bounds read vulnerability exists in the handling of certain XFA element attributes of Foxit Software's PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger...

CWE-1252018

CVE-2019-14283

MEDIUM

CVSS:6.8(Medium)

In the Linux kernel before 5.2.3, set_geometry in drivers/block/floppy.c does not validate the sect and head fields, as demonstrated by an integer overflow and out-of-bounds read. It can be triggered ...

CWE-1252019

CVE-2019-5516

MEDIUM

CVSS:6.8(Medium)

VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation (15.x before 15.0.3 and 14.x before 14.1.6), Fusion (11.x before 11.0.3 and 10.x before 10.1.6) updates addr...

CWE-1252019

CVE-2019-5517

MEDIUM

CVSS:6.8(Medium)

CWE-1252019

CVE-2019-5518

MEDIUM

CVSS:6.8(Medium)

VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before ESXi600-201903001), Workstation (15.x before 15.0.4, 14.x before 14.1.7), Fusion (11.x before 11.0.3, 10.x before 10...

CWE-1252019

CVE-2021-20254

MEDIUM

CVSS:6.8(Medium)

A flaw was found in samba. The Samba smbd file server must map Windows group identities (SIDs) into unix group ids (gids). The code that performs this had a flaw that could allow it to read data beyon...

CWE-1252021

CVE-2023-51456

Vulnerability Description

Related Vulnerabilities

CVE-2018-3956

CVE-2019-14283

CVE-2019-5516

CVE-2019-5517

CVE-2019-5518

CVE-2021-20254