Buffer Overflow in H3C FA3010L Access Points by H3C
CVE-2025-25525

5.1MEDIUM

Key Information:

Vendor: H3C
Status: H3C FA3010L Access Points
Vendor: CVE Published:; 11 February 2025

Summary

A buffer overflow vulnerability exists in H3C FA3010L access points running SWFA1B0V100R005 due to insufficient length verification. This weakness can be exploited by attackers to manipulate firewall settings, leading to potential crashes of the device or the execution of arbitrary commands. Organizations using the affected devices should take immediate action to secure their networks against this vulnerability.

References

https://gist.github.com/XiaoCurry/d797c3cce41678028ff2d20...

CVSS V3.1

Score:

5.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 11, 2025
Vulnerability Reserved
Feb 7, 2025