Lucene search

[email protected]NVD:CVE-2023-27077

HistoryMar 23, 2023 - 3:15 p.m.

CVE-2023-27077

2023-03-2315:15:12

CWE-787

[email protected]

web.nvd.nist.gov

stack overflow

360 d901

remote attacker

ddos

crafted http package

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

50.5%

JSON

Stack Overflow vulnerability found in 360 D901 allows a remote attacker to cause a Distributed Denial of Service (DDOS) via a crafted HTTP package.

Affected configurations

Nvd

Node

360d901Match-

AND

360d901_firmwareMatch-

VendorProductVersionCPE
360d901-cpe:2.3:h:360:d901:-:*:*:*:*:*:*:*
360d901_firmware-cpe:2.3:o:360:d901_firmware:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
360	d901	-	cpe:2.3:h:360:d901:-:::::::*
360	d901_firmware	-	cpe:2.3:o:360:d901_firmware:-:::::::*

References

github.com/B2eFly/Router/blob/main/360/360D901.md

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

50.5%

JSON

Related for NVD:CVE-2023-27077

cvelist1 cve1 prion1