How severe is CVE-2023-43628?

CVE-2023-43628 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2023-43628

Name: gpsd
Author: gpsd_project

5.9MEDIUM

An integer underflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1~dev. A specially crafted network packet can lead to memory corruption. An attacker can send a malicio

发布于: 12/5/2023更新于: 11/4/2025

描述

An integer underflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1~dev. A specially crafted network packet can lead to memory corruption. An attacker can send a malicious packet to trigger this vulnerability.

AI分析AI驱动

受影响产品

gpsd_projectgpsd

3.25.1

参考资料

https://talosintelligence.com/vulnerability_reports/TALOS-2023-1860
ExploitThird Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1860
ExploitThird Party Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1860