exploitDog

GHSA-jcvh-w2rh-mxx9

Опубликовано: 05 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.7

Описание

Netgear R8500 v1.0.2.160 and R7000P v1.3.3.154 were discovered to multiple stack overflow vulnerabilities in the component usb_device.cgi via the cifs_user, read_access, and write_access parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted POST request.

Netgear R8500 v1.0.2.160 and R7000P v1.3.3.154 were discovered to multiple stack overflow vulnerabilities in the component usb_device.cgi via the cifs_user, read_access, and write_access parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted POST request.

Ссылки

EPSS

Процентиль: 44%

0.00216

Низкий

5.7 Medium

CVSS3

CVE ID

Дефекты

CWE-120

Связанные уязвимости

CVE-2024-51004

CVSS3: 5.7

nvd

больше 1 года назад

Netgear R8500 v1.0.2.160 and R7000P v1.3.3.154 were discovered to multiple stack overflow vulnerabilities in the component usb_device.cgi via the cifs_user, read_access, and write_access parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted POST request.

BDU:2024-09946

CVSS3: 5.7

fstec

больше 1 года назад

Уязвимость сценария usb_device.cgi микропрограммного обеспечения маршрутизаторов NETGEAR R8500 и R7000P, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 44%

0.00216

Низкий

5.7 Medium

CVSS3

CVE ID

Дефекты

CWE-120