Submit #560787: Netgear EX6120 1.0.0.68 Buffer Overflowinfo

TitleNetgear EX6120 1.0.0.68 Buffer Overflow
DescriptionNetgear EX6120 has buffer overflow vulnerability in fwAcosCgiInbound.The program receives the value of the host field through the websGetVar function,concatenates it into a formatted string using the sprintf function. Since the sprintf lacks the boundary check and the attacker's input length isn't checked either , buffer overflow exists.
Source⚠️ https://github.com/jylsec/vuldb/blob/main/Netgear/netgear_ex6120/Buffer_overflow-fwAcosCgiInbound-selectService/README.md
User
 54357 (UID 84310)
Submission04/17/2025 10:00 (1 Year ago)
Moderation04/30/2025 16:07 (13 days later)
StatusDuplicate
VulDB entry306631 [Netgear EX6120 1.0.0.68 fwAcosCgiInbound host buffer overflow]
Points0

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!