漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An exploitable command execution vulnerability exists in the print-tlv command of Weave tool. A specially crafted weave TLV can trigger a stack-based buffer overflow, resulting in code execution. An attacker can trigger this vulnerability by convincing the user to open a specially crafted Weave command.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
Nest Labs Openweave-core Weave工具缓冲区错误漏洞
Vulnerability Description
Openweave-core是一个家庭局域网应用协议栈,它主要用于控制路径和数据路径消息传递的异步、对称、设备到设备和设备到云的通信。 Nest Labs Openweave-core 4.0.2版本中的Weave工具的print-tlv命令存在缓冲区错误漏洞。攻击者可通过诱使用户打开特制的Weave命令利用该漏洞执行代码。
CVSS Information
N/A
Vulnerability Type
N/A