Описание
Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stack-based Buffer Overflow vulnerability, which can be triggered by authenticated users via a crafted POST request.
Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stack-based Buffer Overflow vulnerability, which can be triggered by authenticated users via a crafted POST request.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2023-2575
- https://cyberdanube.com/en/multiple-vulnerabilities-in-advantech-eki-15xx-series
- https://www.advantech.com/en/support/details/firmware?id=1-1J9BEBL
- https://www.advantech.com/en/support/details/firmware?id=1-1J9BECT
- https://www.advantech.com/en/support/details/firmware?id=1-1J9BED3
- http://packetstormsecurity.com/files/172307/Advantech-EKI-15XX-Series-Command-Injection-Buffer-Overflow.html
- http://seclists.org/fulldisclosure/2023/May/4
Связанные уязвимости
CVSS3: 8.8
nvd
больше 2 лет назад
Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stack-based Buffer Overflow vulnerability, which can be triggered by authenticated users via a crafted POST request.
CVSS3: 8.8
fstec
почти 3 года назад
Уязвимость микропрограммного обеспечения промышленных коммутаторов Advantech EKI-1524, EKI-1522, EKI-1521, позволяющая нарушителю выполнить произвольный код