216.73.217.172

CVE-2024-57479

· Published 14/01/2025 22:15 · Modified 18/03/2025 15:15

Labels: CVE-2024-57479 2025-01-14CVE-2024-57479CWE-120[email protected]

Essential information

Published
14/01/2025 22:15
Modified
18/03/2025 15:15
Author
Creator
CVSS
9.8 CRITICAL (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification in the mac address update function. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands by sending a POST request to /bin/webs.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References