CVE-2023-28379

Name of the Vulnerable Software and Affected Versions Weston Embedded uC-HTTP version 3.01.01

Description A memory corruption issue exists in the HTTP Server form boundary functionality. This can be triggered by a specially crafted network packet, potentially leading to code execution. An attacker can exploit this by sending a malicious packet.

Recommendations For Weston Embedded uC-HTTP version 3.01.01, consider disabling the HTTP Server form boundary functionality until a patch is available to prevent potential code execution. Restrict access to the HTTP server to minimize the risk of exploitation. Avoid using the vulnerable version until an update or fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.