Buffer Overflow in IP-COM M50 Router by IP-COM
CVE-2022-45706

9.8CRITICAL

Key Information:

Vendor: Ip-com
Status: M50 Firmware
Vendor: CVE Published:; 23 December 2022

What is CVE-2022-45706?

The IP-COM M50 router has been identified to contain a buffer overflow issue. This vulnerability arises through the hostname parameter in the formSetNetCheckTools function, which could allow for unauthorized access and potentially malicious execution of commands on the device. It is crucial for users to apply necessary security measures or updates to safeguard their network infrastructure.

References

https://hackmd.io/%40AAN506JzR6urM5U8fNh1ng/SJZx0L0Sj

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 23, 2022
Vulnerability Reserved
Nov 21, 2022

CVE-2022-45706 Data

JSON

Ip-com

What is CVE-2022-45706?

References

CVSS V3.1

Timeline