3 matches found
CVE-2023-25093
creationtimestamp| type| source ---|---|--- 2023-07-06 18:20:35+00:00| seen| https://t.me/cibsecurity/66091...
CVE-2023-25093
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...
CVE-2023-25093
CVE-2023-25093 concerns Milesight UR32L v32.3.0.5 (vtysh_ubus) with multiple buffer-overflow vulnerabilities caused by unsafe sprintf usage. Talos (TALOS-2023-1716) describes a pattern where user-controlled data parsed from JSON/blobmsg leads to formatting into vtysh_command buffers, enabling pot...