ГлавнаяУязвимости → CVE-2024-50694
9.8критическая

CVE-2024-50694

Описание

In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when copying the timestamp read from an MQTT message, the underlying code does not check the bounds of the buffer that is used to store the message. This may lead to a stack-based buffer overflow.

Затрагиваемое ПО
Sungrowpower Winet-s firmwareSungrowpower Winet-s
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://en.sungrowpower.com/security-notice-detail-2/5961