Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-39068: Hangzhou Xiongmai Technology Co.,LTD.-Buffer overflow vulnerability exists in Web service firmware of some devices

Buffer Overflow vulnerability in NBD80S09S-KLC v.YK_HZXM_NBD80S09S-KLC_V4.03.R11.7601.Nat.OnvifC.20230414.bin and NBD80N32RA-KL-V3 v.YK_HZXM_NBD80N32RA-KL_V4.03.R11.7601.Nat.OnvifC.20220120.bin allows a remote attacker to casue a denial of service via a crafted request to the service.XM component.

CVE
Open in Source
#vulnerability#web#dos#buffer_overflow

Buffer overflow vulnerability exists in Web service firmware of some devices****2023-07-05 14:00:57

No:XM-SN-XMSRC2301

Release date:2023-07-05

Summary

Buffer overflow vulnerability exists in Web service firmware of some devices, it allow the remote attackers to exploit vulnerabilities to send special requests, which lead the web service refused the service.XM have fix this vulnerability in the new firmware.

Software version

Vulnerability rating details

The vulnerability has been graded through the CVSSv3 rating system

(http://www.first.org/cvss/specification-document)

Basic score: 6.9(AV:N / AC:H / PR:N / UI:R / S:C / C:L / I:N / A:H)

Get the new release

Contact XM Technical Support to obtain the corresponding firmware or download it from the XM baike website download center - Product Firmware Download.

Revision History

2023-07-05 V1.0 Initial version

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE