{"id":"CVE-2023-38320","details":"An issue was discovered in OpenNDS Captive Portal before version 10.1.2. It has a show_preauthpage NULL pointer dereference that can be triggered with a crafted GET HTTP with a missing User-Agent header. Triggering this issue results in crashing OpenNDS (a Denial-of-Service condition). This problem was fixed in OpenWrt master, OpenWrt 23.05 and OpenWrt 22.03 on 28. August 2023 by updating OpenNDS to version 10.1.3.","modified":"2026-03-14T12:12:40.239921Z","published":"2023-11-17T06:15:33.667Z","references":[{"type":"WEB","url":"https://source.sierrawireless.com/resources/security-bulletins/sierra-wireless-technical-bulletin---swi-psa-2023-006/#sthash.2vJg3d85.dpbs"},{"type":"ADVISORY","url":"https://github.com/openNDS/openNDS/releases/tag/v10.1.2"},{"type":"FIX","url":"https://github.com/openwrt/routing/commit/0b19771fb2dd81e7c428759610aed583171eed80"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/opennds/opennds","events":[{"introduced":"0"},{"fixed":"cd4004fc3cf79c0f2bc0ee98db30d225d0b79bc9"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"10.1.2"}]}},{"type":"GIT","repo":"https://github.com/openwrt/routing","events":[{"introduced":"0"},{"fixed":"0b19771fb2dd81e7c428759610aed583171eed80"}]}],"versions":["v10.1.0","v10.1.1","v5.0.0","v5.0.1","v5.1.0","v5.2.0","v6.0.0","v7.0.0","v7.0.1","v8.0.0","v8.1.0","v8.1.1","v9.0.0","v9.1.0","v9.1.1","v9.10.0","v9.2.0","v9.3.0","v9.4.0","v9.5.0","v9.5.1","v9.6.0","v9.7.0","v9.8.0","v9.9.0","v9.9.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-38320.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}