Openwrt · Openwrt · CVE-2020-7248
**Name of the Vulnerable Software and Affected Versions**
OpenWrt versions 18.06.0 through 18.06.6
OpenWrt versions 19.0.0 through 19.07.0
**Description**
The issue is related to a tagged binary data JSON serialization problem in the libubox library of OpenWrt, which may cause a stack-based buffer overflow. This could potentially allow a remote attacker to execute arbitrary code.
**Recommendations**
For OpenWrt versions 18.06.0 through 18.06.6, update to version 18.06.7 or later.
For OpenWrt versions 19.0.0 through 19.07.0, update to version 19.07.1 or later.