Vulnerabilities > CVE-2023-33221 - Out-of-bounds Write vulnerability in Idemia products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
When reading DesFire keys, the function that reads the card isn't properly checking the boundaries when copying internally the data received. This allows a heap based buffer overflow that could lead to a potential Remote Code Execution on the targeted device. This is especially problematic if you use Default DESFire key.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 8 | |
Hardware | 8 |