9 matches found
CVE-2023-25104
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...
CVE-2023-25121
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...
EUVD-2023-29084
Malicious code in bioql PyPI...
The vulnerability of the set_ike_profile function in the Milesight UR32L router software allows a hacker to execute arbitrary code.
The vulnerability of the setikeprofile function in the Milesight UR32L router microprogramming system arises due to a buffer overflow based on a stack. Exploiting this vulnerability can allow an attacker operating remotely to execute arbitrary code...
The vulnerability of the set_ike_profile function in the Milesight UR32L router software allows a hacker to execute arbitrary code.
The vulnerability of the setikeprofile function in the Milesight UR32L router microprogramming system arises due to a buffer overflow based on a stack. Exploiting this vulnerability can allow an attacker operating remotely to execute arbitrary code...
CVE-2023-25121
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...
CVE-2023-25105
Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...
Milesight UR32L 缓冲区错误漏洞
The Milesight UR32L is a 4G industrial router from China's Milesight. A buffer overflow vulnerability exists in the Milesight UR32L setikeprofile function, which can be exploited by an attacker to cause a buffer overflow and execute arbitrary code on the system, or cause an application to crash...
PT-2023-5145 · Milesight · Milesight Ur32L
Name of the Vulnerable Software and Affected Versions: Milesight UR32L version 32.3.0.5 Description: The issue is caused by a buffer overflow vulnerability in the set ike profile function of the vtysh ubus binary, due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can...