Lucene search

[email protected]CVE-2022-37074

HistoryAug 25, 2022 - 2:15 p.m.

CVE-2022-37074

2022-08-2514:15:12

CWE-787

[email protected]

web.nvd.nist.gov

cve-2022-37074

h3c gr-1200w

minigrw1a0v100r006

stack overflow

switch_debug_info_set

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0005 Low

EPSS

Percentile

17.9%

JSON

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function switch_debug_info_set.

Affected configurations

NVD

Node

h3cgr-1200w_firmwareRange≤minigrw1a0v100r006

AND

h3cgr-120wMatch-

CPENameOperatorVersion
h3c:gr-1200w_firmwareh3c gr-1200w firmwareleminigrw1a0v100r006

CPE	Name	Operator	Version
h3c:gr-1200w_firmware	h3c gr-1200w firmware	le	minigrw1a0v100r006

References

github.com/Darry-lang1/vuln/tree/main/H3C/GR-1200W/11

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0005 Low

EPSS

Percentile

17.9%

JSON

Related for CVE-2022-37074

nvd1 cvelist1 prion1