Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-65480
HistoryJul 10, 2023 - 12:00 a.m.

Milesight UR32L urvpn_client http_connection_readcb Functional Buffer Overflow Vulnerability

2023-07-1000:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
milesight
ur32l
urvpn_client
buffer overflow
vulnerability
command injection
china-based
industrial router
tcpdump
exploited
arbitrary commands
system security

EPSS

0.002

Percentile

52.5%

JSON

The Milesight UR32L is a 4G industrial router from China-based Milesight. A command injection vulnerability exists in the Milesight UR32L vtysh_ubus tcpdump_start_cb function, which can be exploited by an attacker to execute arbitrary commands on the system.

Related

prion 1
cvelist 1
nvd 1
talos 1
cve 1
talosblog 2
prion
prion
Stack overflow
2023-07-06 15:15:00
cvelist
cvelist
CVE-2023-24019
2023-07-06 14:53:22
nvd
nvd
CVE-2023-24019
2023-07-06 15:15:11
talos
talos
Milesight UR32L urvpn_client http_connection_readcb stack-based buffer overflow vulnerability
2023-07-06 00:00:00
cve
cve
CVE-2023-24019
2023-07-06 15:15:11
talosblog
talosblog
Taking over Milesight UR32L routers behind a VPN: 22 vulnerabilities and a full chain
2023-07-06 15:38:19
The many vulnerabilities Talos discovered in SOHO and industrial wireless routers post-VPNFilter
2023-08-02 12:00:19

EPSS

0.002

Percentile

52.5%

JSON
Related for CNVD-2023-65480
prion1cvelist1nvd1talos1cve1talosblog2