CVE-2012-6569

CWE-119Buffer Overflow3 documents3 sources
Severity
9.3CRITICAL
EPSS
2.4%
top 15.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
18
Huawei AR 18-1xHuawei AR 18-2xHuawei AR 18-3x+15 more
Timeline
PublishedJun 20
Latest updateMay 17

Description

Stack-based buffer overflow in the HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, S7800, and S8500 switches allows remote attackers to execute arbitrary code via a long URI.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages18 packages

NVDhuawei/s2000r6305
NVDhuawei/s3000r6305
NVDhuawei/s3500r6305
NVDhuawei/s3900r6305
NVDhuawei/s5100r6305

🔴Vulnerability Details

2
GHSA
GHSA-56jr-5rr7-hg8x: Stack-based buffer overflow in the HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR r2022-05-17
CVEList
CVE-2012-6569: Stack-based buffer overflow in the HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR r2013-06-20
CVE-2012-6569 (CRITICAL CVSS 9.3) | Stack-based buffer overflow in the | cvebase.io