Stack Overflow Vulnerability in H3C Magic B1STV100R012
CVE-2023-34932

7.5HIGH

Key Information:

Vendor: H3c
Status: Magic B1st Firmware
Vendor: CVE Published:; 28 June 2023

What is CVE-2023-34932?

A stack overflow vulnerability exists in the UpdateWanMode function of H3C Magic B1STV100R012, which can be exploited by attackers sending specially crafted POST requests. This issue may lead to Denial of Service, causing disruptions in network services, making it imperative for users to mitigate potential risks associated with this vulnerability. For further details, please visit the provided reference.

References

https://github.com/h4kuy4/vuln/blob/main/H3C_B1STW/CVE-20...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 28, 2023
Vulnerability Reserved
Jun 7, 2023

H3c

What is CVE-2023-34932?

References

CVSS V3.1

Timeline