exploitDog

GHSA-g42p-p7j5-qqx7

Опубликовано: 01 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow. The hnap_main function in the cgibin handler uses sprintf to format the soapaction header onto the stack and has no limit on the size.

D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow. The hnap_main function in the cgibin handler uses sprintf to format the soapaction header onto the stack and has no limit on the size.

Ссылки

EPSS

Процентиль: 80%

0.01359

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-787

Связанные уязвимости

CVE-2021-43722

CVSS3: 9.8

nvd

почти 4 года назад

D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow. The hnap_main function in the cgibin handler uses sprintf to format the soapaction header onto the stack and has no limit on the size.

EPSS

Процентиль: 80%

0.01359

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-787