Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Realtek Jungle SDK version v2.x up to v3.4.14B provides a 'WiFi Simple Config' server that implements both UPnP and SSDP protocols. The binary is usually named wscd or mini_upnpd and is the successor to miniigd. The server is vulnerable to a heap buffer overflow that is present due to unsafe crafting of SSDP NOTIFY messages from received M-SEARCH messages ST header.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Realtek Jungle SDK 缓冲区错误漏洞
Vulnerability Description
Realtek Jungle SDK是提供了一个 HTTP Web 服务器,公开了一个管理接口,可用于配置接入点。 Realtek Jungle SDK 存在安全漏洞,该漏洞源于Realtek Jungle SDK 版本v2.x 到 v3.4.14B 提供了一个“WiFi 简单配置”服务器,它实现了 UPnP 和 SSDP 协议。 二进制文件通常命名为 wscd 或 mini_upnpd,是 miniigd 的继承者。 由于从收到的 M-SEARCH 消息 ST 标头中不安全地制作 SSDP NOTIFY
CVSS Information
N/A
Vulnerability Type
N/A