4 matches found
CVE-2023-35055
creationtimestamp| type| source ---|---|--- 2023-10-11 20:17:40+00:00| seen| https://t.me/cibsecurity/72113 2023-10-12 19:17:31+00:00| seen| https://t.me/truesecator/4958...
CVE-2023-35055
CVE-2023-35055 affects Yifan YF325 v1.0_20221108. Talos reports a stack-based buffer overflow in the httpd module via the gozila_cgi/next_page handling, where user-controlled next_page is copied into a fixed buffer using strcpy, enabling remote code execution. The vulnerability is triggered by sp...
CVE-2023-35055
A buffer overflow vulnerability exists in the httpd nextpage functionality of Yifan YF325 v1.020221108. A specially crafted network request can lead to command execution. An attacker can send a network request to trigger this vulnerability.This buffer overflow is in the nextpage parameter in the...
Yifan YF325 httpd next_page buffer overflow vulnerability
Talos Vulnerability Report TALOS-2023-1761 Yifan YF325 httpd nextpage buffer overflow vulnerability October 11, 2023 CVE Number CVE-2023-35055,CVE-2023-35056 SUMMARY A buffer overflow vulnerability exists in the httpd nextpage functionality of Yifan YF325 v1.020221108. A specially crafted network...