CVE-2014-9223

Опубликовано: 24 дек. 2014

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

Multiple buffer overflows in AllegroSoft RomPager, as used in Huawei Home Gateway products and other vendors and products, allow remote attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors related to authorization.

Ссылки

http://mis.fortunecook.ie/
Technical Description
Third Party Advisory
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-407666.htm
Vendor Advisory
https://www.allegrosoft.com/allegro-software-urges-manufacturers-to-maintain-firmware-for-highest-level-of-embedded-device-security/news-press.html
Third Party Advisory
http://mis.fortunecook.ie/
Technical Description
Third Party Advisory
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-407666.htm
Vendor Advisory
https://www.allegrosoft.com/allegro-software-urges-manufacturers-to-maintain-firmware-for-highest-level-of-embedded-device-security/news-press.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:allegrosoft:rompager:*:*:*:*:*:*:*:*

Версия до 4.07 (включая)

EPSS

Процентиль: 92%

0.07549

Низкий

10 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-3827-x3c5-9qvc

github

больше 3 лет назад