Описание
A vulnerability was identified in INSTAR 2K+ and 4K 3.11.1 Build 1124. This affects the function base64_decode of the component fcgi_server. The manipulation of the argument Authorization leads to buffer overflow. It is possible to initiate the attack remotely.
EPSS
Процентиль: 40%
0.00185
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
CVSS3: 9.8
github
6 месяцев назад
A vulnerability was identified in INSTAR 2K+ and 4K 3.11.1 Build 1124. This affects the function base64_decode of the component fcgi_server. The manipulation of the argument Authorization leads to buffer overflow. It is possible to initiate the attack remotely.
EPSS
Процентиль: 40%
0.00185
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-119