CVE-2020-15956

Опубликовано: 04 авг. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Средний

Описание

ActiveMediaServer.exe in ACTi NVR3 Standard Server 3.0.12.42 allows remote unauthenticated attackers to trigger a buffer overflow and application termination via a malformed payload.

Ссылки

http://packetstormsecurity.com/files/158771/ACTi-NVR3-Standard-Professional-Server-3.0.12.42-Denial-Of-Service.html
Exploit
Third Party Advisory
https://github.com/megamagnus/cve-2020-15956
Exploit
Third Party Advisory
https://www2.acti.com/nvr3
Product
Vendor Advisory
http://packetstormsecurity.com/files/158771/ACTi-NVR3-Standard-Professional-Server-3.0.12.42-Denial-Of-Service.html
Exploit
Third Party Advisory
https://github.com/megamagnus/cve-2020-15956
Exploit
Third Party Advisory
https://www2.acti.com/nvr3
Product
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:acti:nvr:2.3.04.07:*:*:*:professional:*:*:*

cpe:2.3:a:acti:nvr:3.0.12.42:*:*:*:standard:*:*:*

EPSS

Процентиль: 97%

0.41084

Средний

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-120

Связанные уязвимости

GHSA-fc79-vjq3-f6j4

github

больше 3 лет назад