Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2022-40918

Опубликовано: 06 дек. 2022
Источник: nvd
CVSS3: 9.8
EPSS Низкий

Описание

Buffer overflow in firmware lewei_cam binary version 2.0.10 in Force 1 Discovery Wifi U818A HD+ FPV Drone allows attacker to gain remote code execution as root user via a specially crafted UDP packet. Please update the Reference section to these links > http://thiscomputer.com/ > https://www.bostoncyber.org/ > https://medium.com/@meekworth/exploiting-the-lw9621-drone-camera-module-773f00081368

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:force1rc:discovery_wifi_u818a_hd\+_fpv_firmware:2.0.10:*:*:*:*:*:*:*
cpe:2.3:h:force1rc:discovery_wifi_u818a_hd\+_fpv:-:*:*:*:*:*:*:*

EPSS

Процентиль: 89%
0.04349
Низкий

9.8 Critical

CVSS3

Дефекты

CWE-787
CWE-787

Связанные уязвимости

github логотип

GHSA-jqqc-8vpc-2wjv

CVSS3: 9.8
github
около 3 лет назад

Buffer overflow in firmware lewei_cam binary version 2.0.10 in Force 1 Discovery Wifi U818A HD+ FPV Drone allows attacker to gain remote code execution as root user via a specially crafted UDP packet. Please update the Reference section to these links > http://thiscomputer.com/ > https://www.bostoncyber.org/ > https://medium.com/@meekworth/exploiting-the-lw9621-drone-camera-module-773f00081368

EPSS

Процентиль: 89%
0.04349
Низкий

9.8 Critical

CVSS3

Дефекты

CWE-787
CWE-787