7.5
CVE-2024-36251
- EPSS 0.29%
- Published 26.11.2024 08:15:06
- Last modified 26.11.2024 08:15:06
- Source vultures@jpcert.or.jp
- Teams watchlist Login
- Open Login
The web interface of the affected devices process some crafted HTTP requests improperly, leading to a device crash. More precisely, a crafted parameter to billcodedef_sub_sel.html is not processed properly and device-crash happens. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References].
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
Vendorsharp
≫
Product
mx-m905
Default Statusunknown
Version
611
Status
affected
Vendorsharp
≫
Product
mx-m6070
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m5070
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m4070
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m3570
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m3070
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m6050
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m5050
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m4050
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m3550
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m3050
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m2630
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
mx-m6070
Default Statusunknown
Version
502
Status
affected
Vendorsharp
≫
Product
bp-b550wd
Default Statusunknown
Version
250
Status
affected
Vendorsharp
≫
Product
bp-b540wr
Default Statusunknown
Version
250
Status
affected
Vendorsharp
≫
Product
bp-b547wd
Default Statusunknown
Version
250
Status
affected
Vendorsharp
≫
Product
bp-b537wr
Default Statusunknown
Version
250
Status
affected
Vendorsharp
≫
Product
mx-b455w
Default Statusunknown
Version
404
Status
affected
Vendorsharp
≫
Product
mx-b355w
Default Statusunknown
Version
404
Status
affected
Vendorsharp
≫
Product
mx-b455wz
Default Statusunknown
Version
404
Status
affected
Vendorsharp
≫
Product
mx-b355wz
Default Statusunknown
Version
404
Status
affected
Vendorsharp
≫
Product
mx-b455wt
Default Statusunknown
Version
404
Status
affected
Vendorsharp
≫
Product
mx-b355wt
Default Statusunknown
Version
404
Status
affected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.29% | 0.522 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| vultures@jpcert.or.jp | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.