CVE-2023-52729

EUVD-2023-59448
TCPServer.cpp in SimpleNetwork through 29bc615 has an off-by-one error that causes a buffer overflow when trying to add '\0' to the end of long msg data. It can be exploited via crafted TCP packets.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
simplenetwork_projectsimplenetwork
𝑥
≤ 29bc615
ADP
Common Weakness Enumeration
References
https://github.com/kashimAstro/SimpleNetwork/issues/23
https://github.com/kashimAstro/SimpleNetwork/issues/23