PT-2026-4510 · Unknown · Managed Switch Port Mapping Tool

Ismael Nava

Publicado

2026-01-23

Atualizado

2026-01-24

CVE-2021-47894

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Managed Switch Port Mapping Tool version 2.85.2

Description The software contains a denial of service issue that allows attackers to crash the application. This is achieved by creating an oversized buffer. Specifically, attackers can generate a 10,000-character buffer and paste it into the IP Address and SNMP Community Name fields to trigger the application crash. The vulnerable parameters are the IP Address and SNMP Community Name fields.

Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, limit the length of input accepted in the IP Address and SNMP Community Name fields.

Exploit

Correção

DoS

Allocation of Resources Without Limits

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-770

Identificadores relacionados

CVE-2021-47894

Produtos afetados

Managed Switch Port Mapping Tool

PT-2026-4510 · Unknown · Managed Switch Port Mapping Tool

CVE-2021-47894

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7