DD-WRT up to 48599 httpd memory corruption

A vulnerability was found in DD-WRT up to 48599. It has been classified as critical. This affects an unknown code block of the component httpd. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Field08/06/2022 08:13 AM08/31/2022 09:50 AM
cveCVE-2022-27631CVE-2022-27631
cve_assigned1649109600 (04/05/2022)1649109600 (04/05/2022)
cve_nvd_summaryA memory corruption vulnerability exists in the httpd unescape functionality of DD-WRT Revision 32270 - Revision 48599. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability.A memory corruption vulnerability exists in the httpd unescape functionality of DD-WRT Revision 32270 - Revision 48599. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability.
date1659736800 (08/06/2022)1659736800 (08/06/2022)
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_auNN
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_vuldb_rcURUR
cvss2_vuldb_eNDND
cvss2_vuldb_rlNDND
cvss3_vuldb_eXX
cvss3_vuldb_rlXX
cvss2_vuldb_basescore7.57.5
cvss2_vuldb_tempscore7.17.1
cvss3_vuldb_basescore7.37.3
cvss3_vuldb_tempscore7.17.1
cvss3_meta_basescore7.37.5
cvss3_meta_tempscore7.17.4
price_0day$0-$5k$0-$5k
nameDD-WRTDD-WRT
version<=48599<=48599
componenthttpdhttpd
cwe119 (memory corruption)119 (memory corruption)
risk22
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_vuldb_rcRR
identifierTALOS-2022-1510TALOS-2022-1510
urlhttps://talosintelligence.com/vulnerability_reports/TALOS-2022-1510https://talosintelligence.com/vulnerability_reports/TALOS-2022-1510
cvss3_nvd_avN
cvss3_nvd_acL
cvss3_nvd_prN
cvss3_nvd_uiN
cvss3_nvd_sU
cvss3_nvd_cH
cvss3_nvd_iH
cvss3_nvd_aH
cvss3_cna_avN
cvss3_cna_acL
cvss3_cna_prN
cvss3_cna_uiN
cvss3_cna_sU
cvss3_cna_cN
cvss3_cna_iL
cvss3_cna_aN
cve_cnaTalos
cvss3_nvd_basescore9.8
cvss3_cna_basescore5.3

Do you need the next level of professionalism?

Upgrade your account now!