| |
Vulnerability CVE-2023-35967
Published: 2023-10-11
| Description: |
Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_data functionality of Yifan YF325 v1.0_20221108. A specially crafted network request can lead to a heap buffer overflow. An attacker can send a network request to trigger these vulnerabilities.This integer overflow result is used as argument for the malloc function. |
References: |
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1788
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
