CVE-2021-20166high
Description
Netgear RAX43 version 1.0.3.96 contains a buffer overrun vulnerability. The URL parsing functionality in the cgi-bin endpoint of the router containers a buffer overrun issue that can redirection control flow of the applicaiton.
References
Details
Source: MITRE
Published: 2021-12-30
Updated: 2022-01-07
Type: CWE-120
Risk Information
CVSS v2
Base Score: 5.8
Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 6.5
Severity: MEDIUM
CVSS v3
Base Score: 8.8
Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 2.8
Severity: HIGH