2 matches found
CVE-2022-40994
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...
CVE-2022-40994
CVE-2022-40994 affects Siretta QUARTZ-GOLD (G5.0.1.5-210720-141020). Talos-2022-1613 documents stack-based buffer overflow vulnerabilities in the DetranCLI command parsing, specifically in templates like no firmwall keyword WORD description (WORD|null). The issues arise from unsafe use of formatt...