CVE-2021-28179

Name of the Vulnerable Software and Affected Versions: ASUS BMC firmware (affected versions not specified)

Description: The issue arises from a specific function in the Web management page of ASUS BMC's firmware, specifically in the Media support configuration setting, which fails to verify the string length entered by users. This oversight results in a buffer overflow. Remote attackers, upon gaining privileged permission, can exploit this leakage to abnormally terminate the Web service.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.