CVE-2024-57482

Name of the Vulnerable Software and Affected Versions H3C N12 version V100R005

Description The issue is due to a lack of length verification in the 5G wireless network processing function, which can cause a buffer overflow. Attackers who successfully exploit this can cause the remote target device to crash or execute arbitrary commands by sending a POST request to "/bin/webs".

Recommendations For H3C N12 version V100R005, consider disabling the 5G wireless network processing function until a patch is available. Restrict access to the "/bin/webs" endpoint to minimize the risk of exploitation.