CVE-2023-34924

Name of the Vulnerable Software and Affected Versions H3C Magic B1STW version B1STV100R012

Description The issue is related to a stack overflow via the function SetAPInfoById, allowing attackers to cause a Denial of Service (DoS) via a crafted POST request.

Recommendations For version B1STV100R012, consider disabling the SetAPInfoById function as a temporary workaround until a patch is available. Restrict access to the vulnerable function to minimize the risk of exploitation. Avoid using the vulnerable function in the affected API endpoint until the issue is resolved.