2 matches found
CVE-2021-28196
The CVE-2021-28196 issue affects ASUS BMC firmware Web management (Generate SSL certificate function). The root cause is failure to validate user-entered string length, leading to a buffer overflow. This could allow remote attackers with privileged access to terminate the Web service via leakage ...
CVE-2021-28196 ASUS BMC's firmware: buffer overflow - Generate SSL certificate function
The specific function in ASUS BMC’s firmware Web management page Generate SSL certificate function does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the...