- Description
- LBT T300-T390 v2.2.1.8 were discovered to contain a stack overflow via the ApCliSsid parameter in the generate_conf_router function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- HIGH
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:libtor:lbt-t300_firmware:2.2.1.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7452B42B-25F1-4282-BD76-162C8CB43DD7"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:libtor:lbt-t300:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "25300159-D99C-412B-A2D7-AD8CAD76F4AA"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:libtor:lbt-t390_firmware:2.2.1.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "335F6CC9-16B1-4F43-AC7E-491FEA67D5F6"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:libtor:lbt-t390:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "09D462BE-FE16-4B3A-A19A-14E57EA4995E"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]