2 matches found
CVE-2022-31482
CVE-2022-31482 is an unauthenticated memory-corruption vector in HID Mercury LNL-4420 devices (advanced_networking.cgi) where an overlong AcctStr string copied via strcpy triggers a crash and forced reboot. This creates an unauthenticated reboot primitive (DoS), and Trellix documents this as part...
CVE-2022-31482 Denial-of-Service via internal structure overflow
An unauthenticated attacker can send a specially crafted unauthenticated HTTP request to the device that can overflow a buffer. This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmware versions prior to 1.29...