Описание
There is a buffer overflow vulnerability in ZTE MF296R. Due to insufficient validation of the SMS parameter length, an authenticated attacker could use the vulnerability to perform a denial of service attack.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:zte:mf296r_firmware:mf296r_nordic1_b06:*:*:*:*:*:*:*
cpe:2.3:h:zte:mf296r:-:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00333
Низкий
4.5 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-122
CWE-787
Связанные уязвимости
CVSS3: 4.5
github
больше 1 года назад
There is a buffer overflow vulnerability in ZTE MF296R. Due to insufficient validation of the SMS parameter length, an authenticated attacker could use the vulnerability to perform a denial of service attack.
EPSS
Процентиль: 56%
0.00333
Низкий
4.5 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-122
CWE-787