CVE-2021-28197 in BMCinfo

Zusammenfassung

von MITRE • 06.04.2021

The Active Directory configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Zuständig

TWCERT/CC

Reservieren

12.03.2021

Veröffentlichung

06.04.2021

Moderieren

akzeptiert

Eintrag

VDB-172486

CPE

bereit

EPSS

0.01810

KEV

nein

Aktivitäten

very low

Quellen

Do you know our Splunk app?

Download it now for free!