cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-57473,https://securityvulnerability.io/vulnerability/CVE-2024-57473,Buffer Overflow Vulnerability in H3C N12 Router,"The H3C N12 V100R005 vulnerability arises from insufficient length verification in its MAC address editing feature, allowing attackers to exploit this flaw. By sending a carefully crafted POST request to the /bin/webs interface, malicious actors can trigger a buffer overflow, causing the device to crash or execute arbitrary commands. This vulnerability poses a significant risk to the integrity and availability of affected systems.",H3C,,9.8,CRITICAL,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-14T23:15:00.000Z,0
CVE-2024-57479,https://securityvulnerability.io/vulnerability/CVE-2024-57479,Buffer Overflow Vulnerability in H3C N12 Product,"The H3C N12 V100R005 product is susceptible to a buffer overflow vulnerability resulting from inadequate length verification within its MAC address update function. Attackers can exploit this flaw to launch remote attacks by sending specially crafted POST requests to the /bin/webs endpoint, potentially causing device crashes or executing arbitrary commands. Users of the affected product should take immediate action to secure their systems against this type of vulnerability.",H3C,,9.8,CRITICAL,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-14T22:15:00.000Z,0
CVE-2024-57482,https://securityvulnerability.io/vulnerability/CVE-2024-57482,Buffer Overflow Vulnerability in H3C N12 V100R005 5G Wireless Network Device,"The H3C N12 V100R005 device exhibits a buffer overflow vulnerability due to insufficient length verification in its 5G wireless network processing mechanism. This flaw permits adversaries to exploit the device by sending malicious POST requests to the /bin/webs endpoint. Successful exploitation could lead to unauthorized access, potential crashes of the device, or even the execution of arbitrary commands, posing significant risks to network integrity and security.",H3C,,9.8,CRITICAL,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-14T22:15:00.000Z,0
CVE-2024-57480,https://securityvulnerability.io/vulnerability/CVE-2024-57480,Buffer Overflow Vulnerability in H3C N12 Router,"The H3C N12 V100R005 router has a buffer overflow vulnerability which arises from inadequate length verification in the access point configuration function. This flaw can be exploited by attackers to send specially crafted POST requests to the device's /bin/webs endpoint, potentially leading to a crash of the remote target or unauthorized execution of arbitrary commands.",H3C,,9.8,CRITICAL,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-14T22:15:00.000Z,0
CVE-2024-57471,https://securityvulnerability.io/vulnerability/CVE-2024-57471,Buffer Overflow Vulnerability in H3C N12 Wireless Network Product,"The H3C N12 V100R005 contains a critical buffer overflow vulnerability due to insufficient length verification within its 2.4G wireless network processing function. An attacker exploiting this vulnerability could send a specially crafted POST request to the /bin/webs endpoint, potentially leading to denial of service attacks through remote device crashes or execution of arbitrary commands, compromising the security of network environments.",H3C,,9.8,CRITICAL,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-14T22:15:00.000Z,0
CVE-2024-52765,https://securityvulnerability.io/vulnerability/CVE-2024-52765,Remote Code Execution Vulnerability in H3C GR-1800AX by H3C,"The H3C GR-1800AX MiniGRW1B0V100R007 is prone to a remote code execution vulnerability, which can be exploited through the manipulation of the aspForm parameter. This weakness can allow an attacker to execute arbitrary code on the device, potentially compromising system integrity and confidentiality. System administrators should take immediate action to mitigate this risk and safeguard their network infrastructure.",H3c,Gr-1800ax Firmware,9.8,CRITICAL,0.0012799999676644802,false,,false,false,false,,,false,false,,2024-11-20T21:15:00.000Z,0
CVE-2024-42638,https://securityvulnerability.io/vulnerability/CVE-2024-42638,Hardcoded Password Vulnerability Affects H3C Magic B1ST v100R012,"A security flaw has been identified in the H3C Magic B1ST v100R012 relating to hardcoded passwords within the system files. This vulnerability resides in the /etc/shadow file, which allows attackers to exploit the weak security measures in place and gain root access. The presence of a hardcoded password poses significant risks, enabling unauthorized individuals to manipulate system settings, access sensitive data, and compromise overall system integrity. Organizations using H3C Magic B1ST must prioritize implementing measures to protect their environments against potential exploits stemming from this issue.",H3C,Magic B1st Firmware,9.8,CRITICAL,0.0010600000387057662,false,,false,false,false,,,false,false,,2024-08-16T18:15:00.000Z,0
CVE-2023-30311,https://securityvulnerability.io/vulnerability/CVE-2023-30311,Hijacking TCP Sessions Could Lead to Denial of Service in H3C Routers,"A vulnerability identified in H3C Magic R365 and H3C Magic R100 routers allows attackers to hijack TCP sessions due to improper handling of sequence number leakage. This flaw can be exploited to disrupt normal service, leading to potential denial of service. Attackers may take advantage of this vulnerability to intercept and manipulate traffic, posing significant risks to network integrity and stability.",H3C,,7.5,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-05-28T19:15:00.000Z,0
CVE-2023-34937,https://securityvulnerability.io/vulnerability/CVE-2023-34937,Stack Overflow Vulnerability in H3C Magic B1STV100R012,"A vulnerability has been identified in the UpdateSnat function of H3C Magic B1STV100R012, leading to a potential denial of service threat. Attackers can exploit this vulnerability by sending specially crafted POST requests that trigger a stack overflow condition, thereby disrupting normal operations and causing service outages. Organizations using this product should take steps to mitigate the risk associated with this vulnerability.",H3c,Magic B1st Firmware,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34928,https://securityvulnerability.io/vulnerability/CVE-2023-34928,Stack Overflow Vulnerability in H3C Magic B1STV100R012,"A stack overflow vulnerability is present in the Edit_BasicSSID function of the H3C Magic B1STV100R012. Attackers can exploit this flaw by sending specially crafted POST requests, leading to a potential Denial of Service (DoS), which disrupts service availability and impacts users.",H3c,Magic B1st Firmware,7.5,HIGH,0.0013699999544769526,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34936,https://securityvulnerability.io/vulnerability/CVE-2023-34936,Stack Overflow Vulnerability in H3C Magic B1STV100R012,"A stack overflow vulnerability present in the UpdateMacClone function of H3C Magic B1STV100R012 can be exploited by attackers to trigger a Denial of Service (DoS) condition. This occurs as a result of maliciously crafted POST requests that exceed expected data limits, allowing unauthorized users to disrupt service availability and affect operational performance.",H3c,Magic B1st Firmware,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34935,https://securityvulnerability.io/vulnerability/CVE-2023-34935,Denial of Service Vulnerability in H3C Magic B1STV100R012,"The H3C Magic B1STV100R012 device is susceptible to a stack overflow vulnerability within the AddWlanMacList function. This flaw can be exploited by attackers through specially crafted POST requests, potentially leading to a Denial of Service (DoS) condition. Organizations using this product should implement necessary security measures to mitigate the risk of exploitation and ensure the integrity and availability of their network services.",H3c,Magic B1st Firmware,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34929,https://securityvulnerability.io/vulnerability/CVE-2023-34929,Stack Overflow Vulnerability in H3C Magic B1STV100R012,"A stack overflow vulnerability has been identified in the AddMacList function of H3C Magic B1STV100R012. Attackers can exploit this vulnerability by sending a specially crafted POST request, potentially leading to a Denial of Service (DoS). This security flaw underlines the importance of implementing robust input validation mechanisms to prevent such exploits and ensure system integrity.",H3c,Magic B1st Firmware,7.5,HIGH,0.0013699999544769526,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34931,https://securityvulnerability.io/vulnerability/CVE-2023-34931,Stack Overflow Vulnerability in H3C Magic B1STV100R012,"A stack overflow vulnerability exists in the EditWlanMacList function of H3C Magic B1STV100R012, which can be exploited by attackers through a specially crafted POST request. This exploitation leads to a Denial of Service (DoS), potentially disrupting service and affecting the availability of the targeted device. System administrators should apply security patches and monitor for unusual request patterns to mitigate the impact of this vulnerability.",H3c,Magic B1st Firmware,7.5,HIGH,0.0013699999544769526,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34932,https://securityvulnerability.io/vulnerability/CVE-2023-34932,Stack Overflow Vulnerability in H3C Magic B1STV100R012,"A stack overflow vulnerability exists in the UpdateWanMode function of H3C Magic B1STV100R012, which can be exploited by attackers sending specially crafted POST requests. This issue may lead to Denial of Service, causing disruptions in network services, making it imperative for users to mitigate potential risks associated with this vulnerability. For further details, please visit the provided reference.",H3c,Magic B1st Firmware,7.5,HIGH,0.0013699999544769526,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34930,https://securityvulnerability.io/vulnerability/CVE-2023-34930,Stack Overflow Vulnerability in H3C Magic B1STV100R012,"A stack overflow vulnerability exists in the EditMacList function of H3C Magic B1STV100R012, which allows attackers to exploit this flaw by sending a specially crafted POST request. Successful exploitation can lead to a Denial of Service (DoS), making the system unavailable to legitimate users.",H3c,Magic B1st Firmware,7.5,HIGH,0.0013699999544769526,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34933,https://securityvulnerability.io/vulnerability/CVE-2023-34933,Stack Overflow Vulnerability in H3C Magic B1STV100R012,"The H3C Magic B1STV100R012 is susceptible to a stack overflow vulnerability located in the UpdateWanParams function. Attackers can exploit this weakness by sending specially crafted POST requests, potentially causing a Denial of Service (DoS) condition. This flaw emphasizes the importance of secure coding practices and timely updates to mitigate the risk of exploitation.",H3c,Magic B1st Firmware,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34934,https://securityvulnerability.io/vulnerability/CVE-2023-34934,Stack Overflow Vulnerability in H3C Magic Products,"A malicious actor can exploit a stack overflow vulnerability in the Edit_BasicSSID_5G function of H3C Magic B1STV100R012 by sending a specially crafted POST request. This exploitation can lead to a Denial of Service (DoS), disrupting normal operations and potentially rendering the device inoperable. Organizations should take proactive measures to mitigate the risks associated with this vulnerability and ensure continuous protection of their network infrastructure.",H3c,Magic B1st Firmware,7.5,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2023-06-28T00:00:00.000Z,0
CVE-2023-34924,https://securityvulnerability.io/vulnerability/CVE-2023-34924,Stack Overflow Vulnerability in H3C Magic B1STW Products by H3C,"A stack overflow vulnerability has been identified in the H3C Magic B1STW product line. This flaw exists in the SetAPInfoById function, which may be exploited by attackers sending specially crafted POST requests. Successful exploitation of this vulnerability could result in a Denial of Service condition, impacting the availability of the affected devices. It is crucial for users to apply any available patches or updates to mitigate the risk associated with this vulnerability.",H3c,Magic B1stw Firmware,7.5,HIGH,0.0005600000149570405,false,,false,false,true,2023-06-15T03:12:35.000Z,true,false,false,,2023-06-26T00:00:00.000Z,0
CVE-2023-33633,https://securityvulnerability.io/vulnerability/CVE-2023-33633,Stack Overflow Vulnerability in H3C Magic R300 Router,"The H3C Magic R300 router version R300-2100MV100R004 is susceptible to a stack overflow vulnerability through the UpdateWanParams interface. This issue allows an attacker to exploit the router by inputting large amounts of data into the /goform/aspForm endpoint, potentially leading to unauthorized access or service disruption.",H3c,Magic R300-2100m Firmware,7.2,HIGH,0.0010000000474974513,false,,false,false,false,,,false,false,,2023-05-31T00:00:00.000Z,0
CVE-2023-33634,https://securityvulnerability.io/vulnerability/CVE-2023-33634,Stack Overflow Vulnerability in H3C Magic R300 Router,"A stack overflow vulnerability has been identified in the H3C Magic R300 router, specifically through the EdittriggerList interface found at /goform/aspForm. This flaw could be exploited by an attacker to execute arbitrary code, potentially compromising the integrity and availability of the device. Ensuring that affected versions are updated is critical to maintaining network security.",H3c,Magic R300-2100m Firmware,7.2,HIGH,0.0010000000474974513,false,,false,false,false,,,false,false,,2023-05-31T00:00:00.000Z,0
CVE-2023-33639,https://securityvulnerability.io/vulnerability/CVE-2023-33639,Stack Overflow in H3C Magic R300 Router via SetMobileAPInfoById Interface,"A stack overflow vulnerability has been identified in the H3C Magic R300 Router, specifically affecting version R300-2100MV100R004. The flaw resides in the SetMobileAPInfoById interface at /goform/aspForm. Exploitation of this vulnerability could allow an attacker to execute arbitrary code or cause a denial of service, compromising the security and functionality of the affected device. Immediate remediation is advisable for maintaining network integrity.",H3c,Magic R300-2100m Firmware,7.2,HIGH,0.0010000000474974513,false,,false,false,false,,,false,false,,2023-05-31T00:00:00.000Z,0
CVE-2023-33641,https://securityvulnerability.io/vulnerability/CVE-2023-33641,Stack Overflow Vulnerability in H3C Magic R300 Router,"A stack overflow vulnerability has been identified in the H3C Magic R300 router, specifically through the AddMacList interface at /goform/aspForm. This flaw allows remote attackers to exploit the router, potentially leading to unauthorized access, data manipulation, or a denial of service. Users are advised to update their routers to the latest firmware to mitigate this risk.",H3c,Magic R300-2100m Firmware,7.2,HIGH,0.0010000000474974513,false,,false,false,false,,,false,false,,2023-05-31T00:00:00.000Z,0
CVE-2023-33632,https://securityvulnerability.io/vulnerability/CVE-2023-33632,Stack Overflow Vulnerability in H3C Magic R300 Router,"The H3C Magic R300 router version R300-2100MV100R004 is susceptible to a stack overflow vulnerability that can be exploited through the ipqos_lanip_dellist interface at /goform/aspForm. This flaw could allow an attacker to execute arbitrary code, potentially compromising the system's integrity and availability. Proper measures should be taken to mitigate risks associated with this vulnerability.",H3c,Magic R300-2100m Firmware,7.2,HIGH,0.0010000000474974513,false,,false,false,false,,,false,false,,2023-05-31T00:00:00.000Z,0
CVE-2023-33636,https://securityvulnerability.io/vulnerability/CVE-2023-33636,Stack Overflow in H3C Magic R300 Router,"A vulnerability was identified in the H3C Magic R300 router, specifically in the ipqos_lanip_editlist interface at /goform/aspForm. This issue allows for the potential exploitation via a stack overflow, which could lead to unexpected behavior or system compromise, posing significant risks to network integrity and security.",H3c,Magic R300-2100m Firmware,7.2,HIGH,0.0010000000474974513,false,,false,false,false,,,false,false,,2023-05-31T00:00:00.000Z,0