CVE-2023-52389 | POCO up to 1.11.8p1/1.12.5p1 UTF32Encoding.cpp convert stack-based overflow (Issue 4320)

CVE-2023-52389 | POCO up to 1.11.8p1/1.12.5p1 UTF32Encoding.cpp convert stack-based overflow (Issue 4320)

A vulnerability classified as critical was found in POCO up to 1.11.8p1/1.12.5p1. This vulnerability affects the function Poco::UTF32Encoding::convert of the file UTF32Encoding.cpp. The manipulation leads to stack-based buffer overflow. This vulnerability was named CVE-2023-52389. The attack can only be initiated within the local network. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.