Описание
H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification in the AP configuration function. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands by sending a POST request to /bin/webs.
Ссылки
- Product
- Broken Link
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:h3c:n12_firmware:100r005:*:*:*:*:*:*:*
cpe:2.3:h:h3c:n12:-:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00383
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-120
Связанные уязвимости
CVSS3: 9.8
github
около 1 года назад
H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification in the AP configuration function. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands by sending a POST request to /bin/webs.
EPSS
Процентиль: 59%
0.00383
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-120