5 matches found
CVE-2023-25104
creationtimestamp| type| source ---|---|--- 2023-07-06 18:36:29+00:00| seen| https://t.me/cibsecurity/66132...
CVE-2023-25104
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...
CVE-2023-25104
Milesight UR32L (v32.3.0.5) is affected by CVE-2023-25104 due to a buffer overflow in the vtysh_ubus binary’s set_ike_profile path. The vulnerability stems from an unsafe sprintf pattern used with username and password, allowing a high-privilege attacker to trigger HTTP requests over the network ...
CVE-2023-25104
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...
CVE-2023-25104
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...