Описание
A stack-based buffer overflow vulnerability exists in the confsrv addTimeGroup functionality of TCL LinkHub Mesh Wi-Fi MS1G_00_01.00_14. A specially-crafted network packet can lead to a buffer overflow. An attacker can send a malicious packet to trigger this vulnerability.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:tcl:linkhub_mesh_wifi_ac1200:ms1g_00_01.00_14:*:*:*:*:*:*:*
cpe:2.3:h:tcl:linkhub_mesh_wifi_ac1200:-:*:*:*:*:*:*:*
EPSS
Процентиль: 62%
0.00436
Низкий
8.8 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-121
CWE-787
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
A stack-based buffer overflow vulnerability exists in the confsrv addTimeGroup functionality of TCL LinkHub Mesh Wi-Fi MS1G_00_01.00_14. A specially-crafted network packet can lead to a buffer overflow. An attacker can send a malicious packet to trigger this vulnerability.
EPSS
Процентиль: 62%
0.00436
Низкий
8.8 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-121
CWE-787