CVE-2018-17937

CVE-2018-17937

Vendor Ics-Cert
Product gpsd and microjson (Open Source Project)
Weakness CWE-121
Published March 13, 2019
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

gpsd versions 2.90 to 3.17 and microjson versions 1.0 to 1.3, an open source project, allow a stack-based buffer overflow, which may allow remote attackers to execute arbitrary code on embedded platforms via traffic on Port 2947/TCP or crafted JSON inputs.

Key dates

02Disclosure timeline

March 13, 2019 CVE published
September 16, 2024 Record updated