CVE-2023-34932

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jun 28, 2023
Updated: Jul 5, 2023
CWE ID 787

Summary

CVE-2023-34932 is a newly disclosed stack overflow vulnerability affecting the UpdateWanMode function in H3C Magic B1STV100R012 devices. This issue can be exploited by attackers to trigger a Denial of Service (DoS) condition. A maliciously crafted POST request is sufficient to induce the stack overflow, resulting in the affected device becoming unresponsive and potentially unavailable to its intended users. This vulnerability poses a risk to network availability and should be addressed promptly through the application of a patch or update provided by H3C.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share