Unrated severityNVD Advisory· Published Jan 27, 2024· Updated May 29, 2025
CVE-2023-52389
CVE-2023-52389
Description
UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer overflow and resultant stack buffer overflow because Poco::UTF32Encoding::convert() and Poco::UTF32::queryConvert() may return a negative integer if a UTF-32 byte sequence evaluates to a value of 0x80000000 or higher. This is fixed in 1.11.8p2, 1.12.5p2, and 1.13.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- POCO/POCOdescription
- Range: < 1.11.8p2 (or >= 1.12.0 < 1.12.5p2) or < 1.13.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.