CVE-2021-36134

Published: Sep 27, 2021Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

Out of bounds write vulnerability in the JPEG parsing code of Netop Vision Pro up to and including 9.7.2 allows an adjacent unauthenticated attacker to write to arbitrary memory potentially leading to a Denial of Service (DoS).

Affected (1)

Products: Netop: Vision Pro

Netop

1 product

Vision Pro

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netop Vision Pro	Up to 9.7.2

Running on/with	Platform Versions
Microsoft Windows	All versions

Related CWEs

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (2)

https://www.mcafee.com/blogs/?p=127255&preview=true

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.mcafee.com/blogs/?p=127255&preview=true

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.