GHSA-m8ph-fr33-7cmg

Опубликовано: 23 дек. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the Password parameter in the SetWan2Settings module.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2022-46560
https://hackmd.io/%400dayResearch/SetWan2Settings_l2tp
https://hackmd.io/%400dayResearch/SetWan2Settings_pppoe
https://hackmd.io/%400dayResearch/SetWan2Settings_pptp
https://hackmd.io/%400dayResearch/rkXr4BQPi
https://hackmd.io/@0dayResearch/SetWan2Settings_l2tp
https://hackmd.io/@0dayResearch/SetWan2Settings_pppoe
https://hackmd.io/@0dayResearch/SetWan2Settings_pptp
https://hackmd.io/@0dayResearch/rkXr4BQPi
https://www.dlink.com/en/security-bulletin

EPSS

Процентиль: 85%

0.02362

Низкий

7.2 High

CVSS3

CVE ID

CVE-2022-46560

Дефекты

CWE-787

Связанные уязвимости

CVE-2022-46560

CVSS3: 7.2

nvd

около 3 лет назад

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan2Settings module.

EPSS

Процентиль: 85%

0.02362

Низкий

7.2 High

CVSS3

CVE ID

CVE-2022-46560

Дефекты

CWE-787