2 matches found
CVE-2022-1669
CVE-2022-1669 affects Circutor COMPACT DC-S BASIC (CIR_CDC_v1.2.17). A stack-based buffer overflow exists in the firewall function of the provisioning/management portal: an authenticated user can send a long Address value to a strcpy‑based copy without length checks, overflowing the process stack...
CVE-2021-26777
CVE-2021-26777 concerns a buffer overflow in SetFirewall within index.cgi of Circutor Compact DC-S BASIC smart metering concentrator firmware CIR_CDC_v1.2.17. The flaw stems from improper data boundary handling, enabling an attacker to execute arbitrary code remotely via the device’s network inte...