CVE-2024-50694

Published Jan 24, 2025

Last updated 23 days ago

CVSS critical 9.8

Overview

Description: In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when copying the timestamp read from an MQTT message, the underlying code does not check the bounds of the buffer that is used to store the message. This may lead to a stack-based buffer overflow.
Source: cve@mitre.org
NVD status: Awaiting Analysis

Risk scores

CVSS 3.1

Type: Secondary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0: CWE-121

Hype score: Not currently trending

CVE-2024-50694 In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when copying the timestamp read from an MQTT message, the underlying code does not check the bounds of the bu… https://t.co/jqMPR0vwUT
@CVEnew
25 Jan 2025
531 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes

References