Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-rwp6-cpw3-hxxx

Опубликовано: 15 дек. 2021
Источник: github
Github: Не прошло ревью

Описание

A vulnerability has been identified in POWER METER SICAM Q100 (All versions < V2.41), POWER METER SICAM Q100 (All versions < V2.41), POWER METER SICAM Q100 (All versions < V2.41), POWER METER SICAM Q100 (All versions < V2.41). The affected firmware contains a buffer overflow vulnerability in the web application that could allow a remote attacker with engineer or admin priviliges to potentially perform remote code execution.

A vulnerability has been identified in POWER METER SICAM Q100 (All versions < V2.41), POWER METER SICAM Q100 (All versions < V2.41), POWER METER SICAM Q100 (All versions < V2.41), POWER METER SICAM Q100 (All versions < V2.41). The affected firmware contains a buffer overflow vulnerability in the web application that could allow a remote attacker with engineer or admin priviliges to potentially perform remote code execution.

Ссылки

EPSS

Процентиль: 84%
0.02256
Низкий

CVE ID

CVE-2021-44165

Дефекты

CWE-121

Связанные уязвимости

nvd логотип

CVE-2021-44165

CVSS3: 7.2
nvd
около 4 лет назад

A vulnerability has been identified in POWER METER SICAM Q100 (All versions < V2.41), POWER METER SICAM Q100 (All versions < V2.41), POWER METER SICAM Q100 (All versions < V2.41), POWER METER SICAM Q100 (All versions < V2.41). The affected firmware contains a buffer overflow vulnerability in the web application that could allow a remote attacker with engineer or admin priviliges to potentially perform remote code execution.

fstec логотип

BDU:2022-05148

CVSS3: 7.2
fstec
около 4 лет назад

Уязвимость микропрограммного обеспечение измерителя мощности POWER METER SICAM Q100, связанная с чтением данных за границами буфера в памяти, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 84%
0.02256
Низкий

CVE ID

CVE-2021-44165

Дефекты

CWE-121