Stack Overflow Vulnerability in H3C Magic B1STV100R012
CVE-2023-34932

7.5HIGH

Key Information:

Vendor: H3c
Status: Magic B1st Firmware
Vendor: CVE Published:; 28 June 2023

Summary

A stack overflow vulnerability exists in the UpdateWanMode function of H3C Magic B1STV100R012, which can be exploited by attackers sending specially crafted POST requests. This issue may lead to Denial of Service, causing disruptions in network services, making it imperative for users to mitigate potential risks associated with this vulnerability. For further details, please visit the provided reference.

References

https://github.com/h4kuy4/vuln/blob/main/H3C_B1STW/CVE-20...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 28, 2023
Vulnerability Reserved
Jun 7, 2023