Stack Overflow Vulnerability in H3C Magic R100 Device
CVE-2022-30920
9.8CRITICAL
What is CVE-2022-30920?
The H3C Magic R100 device is susceptible to a stack overflow vulnerability caused by improper handling of the Edit_BasicSSID parameter within the /goform/aspForm endpoint. This weakness can potentially allow attackers to exploit the device, leading to unauthorized access or execution of arbitrary code. Organizations using the affected versions of the Magic R100 should prioritize assessing their security posture and apply necessary mitigations.