Stack Consumption Vulnerability in Motorola CX2L MWR04L Router
CVE-2019-13129

7.5HIGH

Key Information:

Vendor: Motorola
Status: Cx2l Mwr04l Firmware
Vendor: CVE Published:; 1 July 2019

What is CVE-2019-13129?

The Motorola CX2L MWR04L Router version 1.01 is susceptible to a stack consumption vulnerability that occurs due to improper length handling in the snprintf function. This flaw can lead to infinite recursion, potentially disrupting the operational functionality of the router by exhausting system resources. The vulnerability is accessible via TCP port 8010 and UDP port 8080, emphasizing the need for users to implement the necessary security measures to mitigate possible exploitation.

References

https://github.com/TeamSeri0us/pocs/blob/master/iot/morou...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 1, 2019
Vulnerability Reserved
Jul 1, 2019