Lucene search
K

6 matches found

The Hacker News
The Hacker News
added 2023/01/18 10:20 a.m.60 views

Critical Security Vulnerabilities Discovered in Netcomm and TP-Link Routers

Security vulnerabilities have been disclosed in Netcomm and TP-Link routers, some of which could be weaponized to achieve remote code execution. The flaws, tracked as CVE-2022-4873 and CVE-2022-4874, concern a case of stack-based buffer overflow and authentication bypass and impact Netcomm router...

2.4AI score0.11009EPSS
Exploits2
OSV
OSV
added 2023/01/11 9:15 p.m.6 views

CVE-2022-4873

On Netcomm router models NF20MESH, NF20, and NL1902 a stack based buffer overflow affects the sessionKey parameter. By providing a specific number of bytes, the instruction pointer is able to be overwritten on the stack and crashes the application at a known location...

9.8CVSS6AI score0.0717EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/01/11 8:39 p.m.4 views

CVE-2022-4873 Stack based overflow on Netcomm router models NF20MESH, NF20, and NL1902

On Netcomm router models NF20MESH, NF20, and NL1902 a stack based buffer overflow affects the sessionKey parameter. By providing a specific number of bytes, the instruction pointer is able to be overwritten on the stack and crashes the application at a known location...

9.7AI score0.0717EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/01/11 8:39 p.m.48 views

CVE-2022-4873 Stack based overflow on Netcomm router models NF20MESH, NF20, and NL1902

On Netcomm router models NF20MESH, NF20, and NL1902 a stack based buffer overflow affects the sessionKey parameter. By providing a specific number of bytes, the instruction pointer is able to be overwritten on the stack and crashes the application at a known location...

9.9AI score0.0717EPSS
Exploits1References1
CVE
CVE
added 2023/01/11 8:39 p.m.200 views

CVE-2022-4873

CVE-2022-4873 is a stack-based buffer overflow in the Netcomm NF20MESH, NF20, and NL1902 sessionKey handling that can overwrite the instruction pointer and crash the app. Related CVE-2022-4874 is an authentication bypass; together these flaws enable remote code execution when exploited in affecte...

9.8CVSS9.8AI score0.0717EPSS
In wildExploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/01/11 12:0 a.m.43 views

CVE-2022-4873

On Netcomm router models NF20MESH, NF20, and NL1902 a stack based buffer overflow affects the sessionKey parameter. By providing a specific number of bytes, the instruction pointer is able to be overwritten on the stack and crashes the application at a known location. Recent assessments: Assessed...

9.8CVSS4.5AI score0.0717EPSS
In wildExploits1References2
Rows per page
Query Builder