5 matches found
CVE-2023-25106
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...
CVE-2023-25106
creationtimestamp| type| source ---|---|--- 2023-07-06 18:20:42+00:00| seen| https://t.me/cibsecurity/66098...
CVE-2023-25106
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...
CVE-2023-25106
Milesight UR32L v32.3.0.5 is affected by multiple buffer overflow vulnerabilities in the vtysh_ubus binary, caused by unsafe use of sprintf. The flaws are triggered by crafted HTTP requests (network access) and can lead to arbitrary code execution. The root cause is unsafe pattern usage in variou...
CVE-2023-25106
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...