Vulnerabilities > Gpsd Project

DATE CVE VULNERABILITY TITLE RISK
2023-12-05 CVE-2023-43628 Integer Underflow (Wrap or Wraparound) vulnerability in Gpsd Project Gpsd 3.25.1
An integer underflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1~dev.
network
low complexity
gpsd-project CWE-191
7.5
2019-03-13 CVE-2018-17937 Stack-based Buffer Overflow vulnerability in multiple products
gpsd versions 2.90 to 3.17 and microjson versions 1.0 to 1.3, an open source project, allow a stack-based buffer overflow, which may allow remote attackers to execute arbitrary code on embedded platforms via traffic on Port 2947/TCP or crafted JSON inputs.
5.8
2014-02-06 CVE-2013-2038 Improper Input Validation vulnerability in multiple products
The NMEA0183 driver in gpsd before 3.9 allows remote attackers to cause a denial of service (daemon termination) and possibly execute arbitrary code via a GPS packet with a malformed $GPGGA interpreted sentence that lacks certain fields and a terminator.
4.3