CVE-2018-7359

Опубликовано: 16 нояб. 2018

Источник: nvd

CVSS3: 9

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by heap-based buffer overflow vulnerability, which may allow an attacker to execute arbitrary code.

Ссылки

http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1009383
Vendor Advisory
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1009383
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:zte:zxhn_f670_firmware:*:*:*:*:*:*:*:*

Версия до 1.1.10p3t18 (включая)

cpe:2.3:h:zte:zxhn_f670:-:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00814

Низкий

9 Critical

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-4xfr-6c87-7vmj

CVSS3: 9.8

github

больше 3 лет назад

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by heap-based buffer overflow vulnerability, which may allow an attacker to execute arbitrary code.

EPSS

Процентиль: 74%

0.00814

Низкий

9 Critical

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-787