Stack Overflow Vulnerability in H3C H200 Product Family
CVE-2022-37085

9.8CRITICAL

Key Information:

Vendor: H3c
Status: H200 Firmware
Vendor: CVE Published:; 25 August 2022

Summary

A stack overflow vulnerability exists in the H3C H200 device family, specifically affecting the H200V100R004 version. This flaw can be exploited through the AddWlanMacList function, potentially allowing unauthorized access and control over the affected devices. Ensuring updated firmware and adopting cybersecurity best practices is essential to mitigate the risks associated with such vulnerabilities.

References

https://github.com/Darry-lang1/vuln/tree/main/H3C/H200/9

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 25, 2022
Vulnerability Reserved
Aug 1, 2022