Vulnerabilities > Busybox > Busybox > 1.36.1

DATE CVE VULNERABILITY TITLE RISK
2023-11-27 CVE-2023-42364 Use After Free vulnerability in Busybox 1.36.1
A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.
local
low complexity
busybox CWE-416
5.5
5.5
2023-11-27 CVE-2023-42365 Use After Free vulnerability in Busybox 1.36.1
A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function.
local
low complexity
busybox CWE-416
5.5
5.5
2023-11-27 CVE-2023-42366 Out-of-bounds Write vulnerability in Busybox 1.36.1
A heap-buffer-overflow was discovered in BusyBox v.1.36.1 in the next_token function at awk.c:1159.
local
low complexity
busybox CWE-787
5.5
5.5
2023-11-27 CVE-2023-42363 Use After Free vulnerability in Busybox 1.36.1
A use-after-free vulnerability was discovered in xasprintf function in xfuncs_printf.c:344 in BusyBox v.1.36.1.
local
low complexity
busybox CWE-416
5.5
5.5