PT-2023-20782 · H3C · H3C R160
Dengxiquan
·
Publicado
2023-05-12
·
Atualizado
2024-05-17
·
CVE-2023-2676
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
H3C R160 version V1004004
Description
A critical issue has been found in the file /goForm/aspForm, where the manipulation of the
go argument leads to a stack-based buffer overflow. The issue affects some unknown functionality of this file.Recommendations
For version V1004004, as a temporary workaround, consider restricting access to the /goForm/aspForm file until a patch is available. Avoid manipulating the
go argument in the affected file to minimize the risk of exploitation.Exploit
Correção
Stack Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
H3C R160