CVE-2021-46901
CVSS 3.1 Score 7.5 of 10 (high)
Details
Summary
CVE-2021-46901 is a stack-based buffer overflow vulnerability affecting the CETIC-6LBR (6lbr) webserver in version 1.5.0. This issue is triggered by a long URL request over a 6LoWPAN network, which causes the function strcat() to write past the end of the buffer. An attacker could exploit this vulnerability by sending a crafted URL to the webserver, resulting in arbitrary code execution or denial of service. This could potentially lead to serious consequences, including unauthorized access or data breaches. It is recommended that users of CETIC-6LBR version 1.5.0 upgrade to a patched version or implement other mitigation strategies to protect against this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Cetic