Lucene search
MitreCVE-2023-27805HistoryApr 07, 2023 - 2:15 p.m.
CVE-2023-27805
2023-04-0714:15:07
CWE-787
mitre
web.nvd.nist.gov
27
h3c
magic
r100
r100v100r005.bin
stack overflow
vulnerability
dos
nvd
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
32.5%
H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the EditSTList interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.
Affected configurations
Node
h3cmagic_r100_firmwareMatchv100r005
h3cmagic_r100_firmwareMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| h3c | magic_r100_firmware | v100r005 | cpe:2.3:o:h3c:magic_r100_firmware:v100r005:*:*:*:*:*:*:* |
| h3c | magic_r100_firmware | - | cpe:2.3:o:h3c:magic_r100_firmware:-:*:*:*:*:*:*:* |
References
Related
prion
prion
Stack overflow
2023-04-07 14:15:00
nvd
nvd
CVE-2023-27805
2023-04-07 14:15:07
cvelist
cvelist
CVE-2023-27805
2023-04-07 00:00:00
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
32.5%
Related for CVE-2023-27805