exploitDog

GHSA-hvcx-w6jp-qm72

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower. Crafted requests sent to the device may allow remote arbitrary code execution.

Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower. Crafted requests sent to the device may allow remote arbitrary code execution.

Ссылки

EPSS

Процентиль: 86%

0.0278

Низкий

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2020-28144

CVSS3: 9.8

nvd

около 5 лет назад

Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower. Crafted requests sent to the device may allow remote arbitrary code execution.

BDU:2021-00372

CVSS3: 7.5

fstec

больше 5 лет назад

Уязвимость промышленных маршрутизаторов EDR-G903 Series, EDR-G902 Series, EDR-810 Series, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 86%

0.0278

Низкий

CVE ID

Дефекты

CWE-119