Vulnerability Details CVE-2022-4873
On Netcomm router models NF20MESH, NF20, and NL1902 a stack based buffer overflow affects the sessionKey parameter. By providing a specific number of bytes, the instruction pointer is able to be overwritten on the stack and crashes the application at a known location.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.09
EPSS Ranking 92.2%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2022-4873
-
cpe:2.3:h:netcommwireless:nf20:-
-
cpe:2.3:h:netcommwireless:nf20mesh:-
-
cpe:2.3:h:netcommwireless:nl1902:-
-
cpe:2.3:o:netcommwireless:nf20_firmware:-
-
cpe:2.3:o:netcommwireless:nf20mesh_firmware:-
-
cpe:2.3:o:netcommwireless:nl1902_firmware:-