CVE-2021-26731

Опубликовано: 24 окт. 2022

Источник: nvd

CVSS3: 9.1

CVSS3: 9.8

EPSS Средний

Описание

Command injection and multiple stack-based buffer overflows vulnerabilities in the modifyUserb_func function of spx_restservice allow an authenticated attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.

Ссылки

https://www.nozominetworks.com/blog/vulnerabilities-in-bmc-firmware-affect-ot-iot-device-security-part-1/
Third Party Advisory
https://www.nozominetworks.com/labs/vulnerability-advisories/cve-2021-26731/
Third Party Advisory
https://www.nozominetworks.com/blog/vulnerabilities-in-bmc-firmware-affect-ot-iot-device-security-part-1/
Third Party Advisory
https://www.nozominetworks.com/labs/vulnerability-advisories/cve-2021-26731/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:lannerinc:iac-ast2500a_firmware:1.10.0:*:*:*:*:*:*:*

cpe:2.3:h:lannerinc:iac-ast2500a:-:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.10583

Средний

9.1 Critical

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-94

CWE-77

Связанные уязвимости

GHSA-9wgq-fhm2-pjf3

CVSS3: 9.8

github

больше 3 лет назад

Command injection and multiple stack-based buffer overflows vulnerabilities in the modifyUserb_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.

EPSS

Процентиль: 93%

0.10583

Средний

9.1 Critical

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-94

CWE-77