Lucene search

K
cve[email protected]CVE-2022-41415
HistoryOct 19, 2022 - 12:15 p.m.

CVE-2022-41415

2022-10-1912:15:10
CWE-787
web.nvd.nist.gov
22
7
acer altos
w2000h
w570h
f4
stack overflow
revservemem
dos
nvram
vulnerability
cve-2022-41415

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.9%

Acer Altos W2000h-W570h F4 R01.03.0018 was discovered to contain a stack overflow in the RevserveMem component. This vulnerability allows attackers to cause a Denial of Service (DoS) via injecting crafted shellcode into the NVRAM variable.

Affected configurations

NVD
Node
aceraltos_w2000h-w570h_f4Match-
AND
aceraltos_w2000h-w570h_f4_firmwareMatchr01.03.0018

Social References

More

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.9%

Related for CVE-2022-41415