H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the UpdateWanParams interface at /goform/aspForm.
References
Link | Resource |
---|---|
https://hackmd.io/%400dayResearch/UpdateWanParams |
Configurations
Configuration 1 (hide)
AND |
|
History
07 Nov 2023, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
02 Jun 2023, 12:53
Type | Values Removed | Values Added |
---|---|---|
First Time |
H3c magic R300-2100m
H3c H3c magic R300-2100m Firmware |
|
References | (MISC) https://hackmd.io/@0dayResearch/UpdateWanParams - Exploit, Third Party Advisory | |
CWE | CWE-787 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.2 |
CPE | cpe:2.3:h:h3c:magic_r300-2100m:-:*:*:*:*:*:*:* cpe:2.3:o:h3c:magic_r300-2100m_firmware:r300-2100mv100r004:*:*:*:*:*:*:* |
31 May 2023, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-05-31 21:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-33633
Mitre link : CVE-2023-33633
CVE.ORG link : CVE-2023-33633
JSON object : View
Products Affected
h3c
- magic_r300-2100m
- magic_r300-2100m_firmware
CWE
CWE-787
Out-of-bounds Write