libboron in Boron 2.0.8 has a heap-based buffer overflow in ur_strInitUtf8 at string.c.
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/40xxx/CVE-2023-40295.json", "cna_assigner": "mitre" }
{ "cpe": "cpe:2.3:a:0branch:boron:2.0.8:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "2.0.8" }, { "last_affected": "2.0.8" } ], "source": "CPE_STRING" }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-40295.json"