CVE-2023-34398
- EPSS 0.11%
- Veröffentlicht 13.02.2025 22:15:10
- Zuletzt bearbeitet 27.06.2025 16:12:59
Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Some values of this table are serialized archive according boost library. The boost library contains a vulnerability/null pointer dereference.
CVE-2023-34399
- EPSS 0.12%
- Veröffentlicht 13.02.2025 22:15:10
- Zuletzt bearbeitet 27.06.2025 16:12:56
Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Some values of this table are serialized archive according boost library. The version of boost library contains vulnerability integer overflow.
CVE-2016-9840
- EPSS 13%
- Veröffentlicht 23.05.2017 04:29:01
- Zuletzt bearbeitet 20.04.2025 01:37:25
inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
- EPSS 1.68%
- Veröffentlicht 12.03.2013 22:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
boost::locale::utf::utf_traits in the Boost.Locale library in Boost 1.48 through 1.52 does not properly detect certain invalid UTF-8 sequences, which might allow remote attackers to bypass input validation protection mechanisms via crafted trailing b...
- EPSS 3%
- Veröffentlicht 17.01.2008 23:00:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
regex/v4/perl_matcher_non_recursive.hpp in the Boost regex library (aka Boost.Regex) in Boost 1.33 and 1.34 allows context-dependent attackers to cause a denial of service (failed assertion and crash) via an invalid regular expression.
- EPSS 1.93%
- Veröffentlicht 17.01.2008 23:00:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
The get_repeat_type function in basic_regex_creator.hpp in the Boost regex library (aka Boost.Regex) in Boost 1.33 and 1.34 allows context-dependent attackers to cause a denial of service (NULL dereference and crash) via an invalid regular expression...