Lucene search
K

5 matches found

Circl
Circl
added 2023/07/06 6:36 p.m.5 views

CVE-2023-25104

creationtimestamp| type| source ---|---|--- 2023-07-06 18:36:29+00:00| seen| https://t.me/cibsecurity/66132...

7.2CVSS7AI score0.0146EPSS
Exploits1References1
NVD
NVD
added 2023/07/06 3:15 p.m.27 views

CVE-2023-25104

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS7.6AI score0.0146EPSS
Exploits1References2
CVE
CVE
added 2023/07/06 2:53 p.m.43 views

CVE-2023-25104

Milesight UR32L (v32.3.0.5) is affected by CVE-2023-25104 due to a buffer overflow in the vtysh_ubus binary’s set_ike_profile path. The vulnerability stems from an unsafe sprintf pattern used with username and password, allowing a high-privilege attacker to trigger HTTP requests over the network ...

7.2CVSS7.5AI score0.0146EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/06 2:53 p.m.10 views

CVE-2023-25104

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS8.2AI score0.0146EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/07/06 2:53 p.m.24 views

CVE-2023-25104

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS7.8AI score0.0146EPSS
Exploits1References1
Rows per page
Query Builder