CVE-2018-6892

An issue was discovered in CloudMe before 1.11.0. An unauthenticated remote attacker that can connect to the "CloudMe Sync" client application listening on port 8888 can send a malicious payload causing a buffer overflow condition. This will result in an attacker controlling the program's execution flow and allowing arbitrary code execution.
Configurations

Configuration 1 (hide)

cpe:2.3:a:cloudme:sync:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-02-11 18:29

Updated : 2024-02-28 16:25


NVD link : CVE-2018-6892

Mitre link : CVE-2018-6892

CVE.ORG link : CVE-2018-6892


JSON object : View

Products Affected

cloudme

  • sync
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer