exploitDog

CVE-2023-29468

Опубликовано: 14 авг. 2023

Источник: nvd

CVSS3: 9.8

EPSS Средний

Описание

The Texas Instruments (TI) WiLink WL18xx MCP driver does not limit the number of information elements (IEs) of type XCC_EXT_1_IE_ID or XCC_EXT_2_IE_ID that can be parsed in a management frame. Using a specially crafted frame, a buffer overflow can be triggered that can potentially lead to remote code execution. This affects WILINK8-WIFI-MCP8 version 8.5_SP3 and earlier.

Ссылки

https://www.ti.com/lit/swra773
Vendor Advisory
https://www.ti.com/lit/swra773
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ti:wilink8-wifi-mcp8:*:*:*:*:*:*:*:*

Версия до 8.5 (исключая)

cpe:2.3:a:ti:wilink8-wifi-mcp8:8.5:-:*:*:*:*:*:*

cpe:2.3:a:ti:wilink8-wifi-mcp8:8.5:sp3:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.53865

Средний

9.8 Critical

CVSS3

Дефекты

CWE-120

CWE-120

Связанные уязвимости

GHSA-jp68-xw9h-gq7r

CVSS3: 9.8

github

больше 2 лет назад

The Texas Instruments (TI) WiLink WL18xx MCP driver does not limit the number of information elements (IEs) of type XCC_EXT_1_IE_ID or XCC_EXT_2_IE_ID that can be parsed in a management frame. Using a specially crafted frame, a buffer overflow can be triggered that can potentially lead to remote code execution. This affects WILINK8-WIFI-MCP8 version 8.5_SP3 and earlier.

EPSS

Процентиль: 98%

0.53865

Средний

9.8 Critical

CVSS3

Дефекты

CWE-120

CWE-120