Lucene search
K

5 matches found

Circl
Circl
added 2023/07/06 6:20 p.m.5 views

CVE-2023-25119

creationtimestamp| type| source ---|---|--- 2023-07-06 18:20:44+00:00| seen| https://t.me/cibsecurity/66100...

7.2CVSS7AI score0.0146EPSS
Exploits1References1
NVD
NVD
added 2023/07/06 3:15 p.m.31 views

CVE-2023-25119

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS7.5AI score0.0146EPSS
Exploits1References2
CVE
CVE
added 2023/07/06 2:53 p.m.49 views

CVE-2023-25119

CVE-2023-25119 refers to multiple buffer overflow vulnerabilities in Milesight UR32L v32.3.0.5, specifically in the vtysh_ubus binary. The root cause is unsafe use of sprintf patterns that assemble commands from untrusted input (notably involving remote_subnet/remote_mask in set_pptp and related ...

7.2CVSS7.5AI score0.0146EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/06 2:53 p.m.13 views

CVE-2023-25119

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS7.6AI score0.0146EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/07/06 2:53 p.m.30 views

CVE-2023-25119

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS7.7AI score0.0146EPSS
Exploits1References1
Rows per page
Query Builder