Описание
A Buffer Overflow vulnerabilty in the local_app_set_router_token function of Vilo 5 Mesh WiFi System <= 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via sscanf reading the token and timezone JSON fields into a fixed-length buffer.
EPSS
Процентиль: 90%
0.05477
Низкий
9.6 Critical
CVSS3
Дефекты
CWE-120
Связанные уязвимости
CVSS3: 9.6
github
больше 1 года назад
A Buffer Overflow vulnerabilty in the local_app_set_router_token function of Vilo 5 Mesh WiFi System <= 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via sscanf reading the token and timezone JSON fields into a fixed-length buffer.
EPSS
Процентиль: 90%
0.05477
Низкий
9.6 Critical
CVSS3
Дефекты
CWE-120