6.6

CVE-2024-32632

A value in ATCMD will be misinterpreted by printf, causing incorrect output and possibly out-of-bounds memory access
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AsrmicroAsr1803sc Firmware Version < cp01.057.067
   AsrmicroAsr1803sc Version-
AsrmicroAsr1607 Firmware Version < cp01.057.067
   AsrmicroAsr1607 Version-
AsrmicroAsr3603 Firmware Version < cp01.057.067
   AsrmicroAsr3603 Version-
AsrmicroAsr3602 Firmware Version < cp01.057.067
   AsrmicroAsr3602 Version-
AsrmicroAsr3605 Firmware Version < cp01.057.067
   AsrmicroAsr3605 Version-
AsrmicroAsr3607 Firmware Version < cp01.057.067
   AsrmicroAsr3607 Version-
AsrmicroAsr1609 Firmware Version < cp01.057.067
   AsrmicroAsr1609 Version-
AsrmicroAsr1605 Firmware Version < cp01.057.067
   AsrmicroAsr1605 Version-
AsrmicroAsr1602 Firmware Version < cp01.057.067
   AsrmicroAsr1602 Version-
AsrmicroAsr1603 Firmware Version < cp01.057.067
   AsrmicroAsr1603 Version-
AsrmicroAsr1606 Firmware Version < cp01.057.067
   AsrmicroAsr1606 Version-
AsrmicroAsr1803 Firmware Version < cp01.057.067
   AsrmicroAsr1803 Version-
AsrmicroAsr1806 Firmware Version < cp01.057.067
   AsrmicroAsr1806 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.17% 0.384
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
68630edc-a58c-4cbd-9b01-0e130455c8ae 6.6 2.1 4
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H
CWE-686 Function Call With Incorrect Argument Type

The product calls a function, procedure, or routine, but the caller specifies an argument that is the wrong data type, which may lead to resultant weaknesses.