ГлавнаяУязвимости → CVE-2024-57480
9.8критическая

CVE-2024-57480

Описание

H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification in the AP configuration function. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands by sending a POST request to /bin/webs.

Затрагиваемое ПО
H3c N12 firmwareH3c N12
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://gist.github.com/XiaoCurry/16213a4d68f95f17cd0fc2cd07e78a90