Описание
Annke N48PBB (Network Video Recorder) products of version 3.4.106 build 200422 and prior are vulnerable to a stack-based buffer overflow, which allows an unauthorized remote attacker to execute arbitrary code with the same privileges as the server user (root).
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 3.4.106 (исключая)
Одновременно
Одно из
cpe:2.3:o:annke:n48pbb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:annke:n48pbb_firmware:3.4.106:-:*:*:*:*:*:*
cpe:2.3:o:annke:n48pbb_firmware:3.4.106:build_200422:*:*:*:*:*:*
cpe:2.3:h:annke:n48pbb:-:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01551
Низкий
9.4 Critical
CVSS3
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-121
CWE-787
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
Annke N48PBB (Network Video Recorder) products of version 3.4.106 build 200422 and prior are vulnerable to a stack-based buffer overflow, which allows an unauthorized remote attacker to execute arbitrary code with the same privileges as the server user (root).
EPSS
Процентиль: 81%
0.01551
Низкий
9.4 Critical
CVSS3
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-121
CWE-787