Lucene search

[email protected]CVE-2023-29696

HistoryMay 08, 2023 - 3:15 p.m.

CVE-2023-29696

2023-05-0815:15:11

CWE-787

[email protected]

web.nvd.nist.gov

h3c

gr-1200w

minigrw1a0v100r006

stack overflow

cve-2023-29696

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.4%

JSON

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function version_set.

Affected configurations

NVD

Node

h3cgr-1200w_firmwareMatchminigrw1a0v100r006

AND

h3cgr-1200wMatch-

CPENameOperatorVersion
h3c:gr-1200w_firmwareh3c gr-1200w firmwareeqminigrw1a0v100r006

CPE	Name	Operator	Version
h3c:gr-1200w_firmware	h3c gr-1200w firmware	eq	minigrw1a0v100r006

References

github.com/Stevenbaga/fengsha/blob/main/H3C/GR-1200W/aVersionSet.md

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.4%

JSON

Related for CVE-2023-29696

cvelist1 prion1 nvd1