PT-2022-21202 · Host Engineering · H0-Ecom100 Communications Module Firmware
Caleb Purcell
+1
·
Published
2022-10-28
·
Updated
2022-11-01
·
CVE-2022-3228
CVSS v3.1
6.5
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Host Engineering H0-ECOM100 Communications Module Firmware versions v5.0.155 and prior
Description
The issue allows an attacker to cause a stack-based buffer overflow by writing into name or description fields with data larger than the appropriate buffer size. This can lead to the affected device crashing or becoming unresponsive.
Recommendations
For Host Engineering H0-ECOM100 Communications Module Firmware versions v5.0.155 and prior, update to a version later than v5.0.155 to resolve the issue.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Memory Corruption
Stack Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
H0-Ecom100 Communications Module Firmware