exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2021-31226

больше 4 лет назад

An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to lack of size validation. This vulnerability requires the attacker to send a crafted HTTP POST request with a URI longer than 50 bytes. This leads to a heap overflow in wbs_post() via an strcpy() call.

CVSS3: 9.8

EPSS: Низкий

GHSA-3qrq-p37g-j4wm

больше 3 лет назад

An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to lack of size validation. This vulnerability requires the attacker to send a crafted HTTP POST request with a URI longer than 50 bytes. This leads to a heap overflow in wbs_post() via an strcpy() call.

EPSS: Низкий

BDU:2021-04492

больше 4 лет назад

Уязвимость стеков TCP/IP NicheLite и InterNiche, связанная с ошибками обработки HTTP-запросов, позволяющая нарушителю выполнить произвольный код

CVSS3: 9.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2021-31226 An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to lack of size validation. This vulnerability requires the attacker to send a crafted HTTP POST request with a URI longer than 50 bytes. This leads to a heap overflow in wbs_post() via an strcpy() call.	CVSS3: 9.8	2% Низкий	больше 4 лет назад
GHSA-3qrq-p37g-j4wm An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to lack of size validation. This vulnerability requires the attacker to send a crafted HTTP POST request with a URI longer than 50 bytes. This leads to a heap overflow in wbs_post() via an strcpy() call.		2% Низкий	больше 3 лет назад
BDU:2021-04492 Уязвимость стеков TCP/IP NicheLite и InterNiche, связанная с ошибками обработки HTTP-запросов, позволяющая нарушителю выполнить произвольный код	CVSS3: 9.1	2% Низкий	больше 4 лет назад

Уязвимостей на страницу