4 matches found
CVE-2021-26728
creationtimestamp| type| source ---|---|--- 2022-10-24 18:26:05+00:00| seen| https://t.me/cibsecurity/51990...
CVE-2021-26728
Command injection and stack-based buffer overflow vulnerabilities in the KillDupUsrfunc function of spxrestservice allow an attacker to execute arbitrary code with the same privileges as the server user root. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0...
CVE-2021-26728
CVE-2021-26728 affects Lanner IAC-AST2500A standard firmware 1.10.0. The issue resides in KillDupUsr_func within spx_restservice, enabling command injection and stack-based (and heap-based per CNNVD) buffering flaws that could allow an attacker to execute arbitrary code with root privileges on th...
CVE-2021-26728 spx_restservice KillDupUsr_func Command Injection and Stack-Based Buffer Overflow
Command injection and stack-based buffer overflow vulnerabilities in the KillDupUsrfunc function of spxrestservice allow an attacker to execute arbitrary code with the same privileges as the server user root. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0...