216.73.217.172

CVE-2024-57473

· Published 14/01/2025 23:15 · Modified 20/03/2025 16:15

Labels: CVE-2024-57473 2025-01-14CVE-2024-57473CWE-120[email protected]

Essential information

Published
14/01/2025 23:15
Modified
20/03/2025 16:15
Author
Creator
CVSS
9.8 CRITICAL (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification in the mac address editing function. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands by sending a POST request to /bin/webs.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References