Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The `news` MonkeyC operation code in CIQ API version 1.0.0 through 4.1.7 fails to check that string resources are not extending past the end of the expected sections. A malicious CIQ application could craft a string that starts near the end of a section, and whose length extends past its end. Upon loading the string, the GarminOS TVM component may read out-of-bounds memory.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Connect IQ 缓冲区错误漏洞
Vulnerability Description
Connect IQ(CIQ)是瑞士佳明(Garmin)的一项技术平台和生态系统,旨在扩展和定制其智能手表和健康追踪器的功能。 Connect IQ存在安全漏洞。攻击者利用该漏洞可以读取越界内存。
CVSS Information
N/A
Vulnerability Type
N/A