← Back

CVE-2022-45714

nvd nist
Published: Dec 23, 2022Modified: Apr 15, 2025

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the indexSet parameter in the formQOSRuleDel function.

Affected (1)

Products: Ip Com: M50 Firmware
Ip Com
1 product
M50 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
M50 Firmware
Version 15.11.0.33
Running on/withPlatform Versions
Ip Com
M50
All versions

Related CWEs

CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (3)

Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Timeline

No history available yet.