** DISPUTED ** On Patlite NH-FB series devices through 1.46, remote attackers can cause a denial of service by omitting the query string. NOTE: the vendor's perspective is that "omitting the query string does not cause a denial of service and the indicated event can not be reproduced."
References
Link | Resource |
---|---|
https://packetstormsecurity.com/files/167797/Patlite-1.46-Buffer-Overflow.html | Exploit Third Party Advisory VDB Entry |
https://www.patlite.co.jp/product/detail0000021462.html | Product Vendor Advisory |
https://www.patlite.com/network-products/lineup/nh-fb.html | Product Vendor Advisory |
Configurations
History
19 Aug 2022, 13:15
Type | Values Removed | Values Added |
---|---|---|
Summary | ** DISPUTED ** On Patlite NH-FB series devices through 1.46, remote attackers can cause a denial of service by omitting the query string. NOTE: the vendor's perspective is that "omitting the query string does not cause a denial of service and the indicated event can not be reproduced." |
04 Aug 2022, 00:12
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:patlite:nhp-fb2_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:patlite:nhl-fb2:-:*:*:*:*:*:*:* cpe:2.3:h:patlite:nhp-fb2:-:*:*:*:*:*:*:* cpe:2.3:o:patlite:nhl-fb2_firmware:*:*:*:*:*:*:*:* |
|
References | (MISC) https://www.patlite.co.jp/product/detail0000021462.html - Product, Vendor Advisory | |
References | (MISC) https://packetstormsecurity.com/files/167797/Patlite-1.46-Buffer-Overflow.html - Exploit, Third Party Advisory, VDB Entry | |
References | (MISC) https://www.patlite.com/network-products/lineup/nh-fb.html - Product, Vendor Advisory | |
CWE | CWE-119 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
27 Jul 2022, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-07-27 21:15
Updated : 2024-08-03 10:15
NVD link : CVE-2022-35911
Mitre link : CVE-2022-35911
CVE.ORG link : CVE-2022-35911
JSON object : View
Products Affected
patlite
- nhp-fb2
- nhp-fb2_firmware
- nhl-fb2
- nhl-fb2_firmware
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer