1 results (0.001 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-31226
https://notcve.org/view.php?id=CVE-2021-31226
19 Aug 2021 — An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to lack of size validation. This vulnerability requires the attacker to send a crafted HTTP POST request with a URI longer than 50 bytes. This leads to a heap overflow in wbs_post() via an strcpy() call. Se ha detectado un problema en HCC embedded InterNiche versión 4.0.1. • https://www.forescout.com/blog/new-critical-operational-technology-vulnerabilities-found-on-nichestack • CWE-787: Out-of-bounds Write •