2 matches found
CVE-2021-21890
A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4 in QEMU. A specially crafted HTTP request can lead to remote code execution in the vulnerable portion of the branch deletedir. An attacker can make an...
CVE-2021-21890
CVE-2021-21890 is a stack-based buffer overflow in Lantronix PremierWave 2050 Web Manager (FsBrowseClean) affecting version 8.9.0.0R4 (QEMU). The vulnerability arises from two vulnerable paths where an authenticated user’s POST parameters (action, path, dir) are assembled via unchecked sprintf in...