Stack Overflow Vulnerability in H3C Magic NX18 Plus Product
CVE-2022-36495

7.8HIGH

Key Information:

Vendor
H3c
Status
Magic Nx18 Plus Firmware
Vendor
CVE Published:
25 August 2022

Summary

The H3C Magic NX18 Plus has been identified with a stack overflow vulnerability in the function addactionlist. This flaw can lead to potential exploitation, allowing attackers to manipulate the application's control flow, which could result in unauthorized access or service disruption.

References

https://github.com/Darry-lang1/vuln/tree/main/H3C/H3C%20N...
x_refsource_MISC

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.