PT-2021-16509 · Gigaset · Gigaset Dx600A

Published

2021-03-02

Updated

2021-03-08

CVE-2021-25306

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: Gigaset DX600A versions v41.00-175

Description: A buffer overflow issue in the AT command interface allows remote attackers to force a device reboot by sending relatively long AT commands.

Recommendations: For Gigaset DX600A versions v41.00-175, consider restricting access to the AT command interface until a patch is available to prevent remote attackers from forcing a device reboot.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2021-25306

Affected Products

Gigaset Dx600A

PT-2021-16509 · Gigaset · Gigaset Dx600A

CVE-2021-25306

Weakness Enumeration

Related Identifiers

Affected Products

References · 3