CVE-2023-25103
CVE-2023-25103 concerns Milesight UR32L firmware (v32.3.0.5). The Red Hat/Cisco Talos advisories and vendor data describe multiple buffer-overflow vulnerabilities in the vtysh_ubus/DMVPN set_dmvpn code path, triggered by specially crafted HTTP requests. The overflow arises from unsafe use of spri...