CVE-2021-26621 — HIGH (8.1)

Q: How severe is CVE-2021-26621?

CVE-2021-26621 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2021-26621?

Check the references section above for vendor advisories and patch information. Affected products include: Netu Mex01 Firmware, Netu Mex01.

Vulnerability Description

An Buffer Overflow vulnerability leading to remote code execution was discovered in MEX01. Remote attackers can use this vulnerability by using the property that the target program copies parameter values to memory through the strcpy() function.

CVSS Score

8.1

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Netu	Mex01 Firmware	< 1.9.18
Netu	Mex01	-

Related Weaknesses (CWE)

CWE-120

References

https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=66579Third Party Advisory
https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=66579Third Party Advisory

FAQ

What is CVE-2021-26621?

CVE-2021-26621 is a vulnerability with a CVSS score of 8.1 (HIGH). An Buffer Overflow vulnerability leading to remote code execution was discovered in MEX01. Remote attackers can use this vulnerability by using the property that the target program copies parameter va...

How severe is CVE-2021-26621?

CVE-2021-26621 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-26621?

Check the references section above for vendor advisories and patch information. Affected products include: Netu Mex01 Firmware, Netu Mex01.