exploitDog

CVE-2024-23978

Опубликовано: 02 фев. 2024

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Heap-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and earlier. By processing invalid values, arbitrary code may be executed. Note that the affected products are no longer supported.

Ссылки

https://jvn.jp/en/vu/JVNVU93740658/
Third Party Advisory
https://www.au.com/support/service/mobile/guide/wlan/home_spot_cube_2/
Vendor Advisory
https://jvn.jp/en/vu/JVNVU93740658/
Third Party Advisory
https://www.au.com/support/service/mobile/guide/wlan/home_spot_cube_2/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:kddi:home_spot_cube_2_firmware:v102:*:*:*:*:*:*:*

cpe:2.3:h:kddi:home_spot_cube_2:-:*:*:*:*:*:*:*

EPSS

Процентиль: 58%

0.00364

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-787

CWE-787

Связанные уязвимости

GHSA-9mhj-hrp8-v2xc

CVSS3: 9.8

github

около 2 лет назад

Heap-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and earlier. By processing invalid values, arbitrary code may be executed. Note that the affected products are no longer supported.

EPSS

Процентиль: 58%

0.00364

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-787

CWE-787