Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IP-COM W30AP POST Request wx3auth R7WebsSecurityHandler stack-based overflow
Vulnerability Description
A vulnerability was detected in IP-COM W30AP up to 1.0.0.11(1340). Affected by this issue is the function R7WebsSecurityHandler of the file /goform/wx3auth of the component POST Request Handler. The manipulation of the argument data results in stack-based buffer overflow. The attack may be performed from remote. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
IP-COM W30AP 安全漏洞
Vulnerability Description
IP-COM W30AP是美国IP-COM公司的一个无线接入点设备。 IP-COM W30AP 1.0.0.11(1340)及之前版本存在安全漏洞,该漏洞源于对组件POST Request Handler中文件/goform/wx3auth内函数R7WebsSecurityHandler的参数data的错误操作,可能导致基于栈的缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A