← voltar
CVE-2023-53879

NVClient 5.0 Stack Buffer Overflow Vulnerability via User Configuration

CVSS 6.7 MEDIUMEPSS 0.2%CWE-121
NVClient 5.0 contains a stack buffer overflow vulnerability in the user configuration contact field that allows attackers to crash the application. Attackers can overwrite 846 bytes of memory by pasting a crafted payload into the contact box, causing a denial of service condition.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Produtos afetados
neonguvenlik · NVClient

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://download.eyemaxdvr.com/DVST%20ST%20SERIES/CMS/Video%20Surveillance%20Management%20Software(V5.0).pdfhttps://www.exploit-db.com/exploits/51700https://www.vulncheck.com/advisories/nvclient-stack-buffer-overflow-vulnerability-via-user-configuration