CVE-2023-25098

Name of the Vulnerable Software and Affected Versions Milesight UR32L versions 32.3.0.5

Description The issue is caused by a buffer overflow vulnerability in the set qos function of the Milesight UR32L's vtysh ubus binary, due to the use of an unsafe sprintf pattern. This can be exploited by sending a specially crafted HTTP request, potentially allowing an attacker to execute arbitrary code. The vulnerability is triggered by the source variable.

Recommendations For Milesight UR32L version 32.3.0.5, consider disabling the set qos function as a temporary workaround until a patch is available. Restrict access to the vtysh ubus binary to minimize the risk of exploitation. Avoid using the source variable in the affected API endpoint until the issue is resolved.