libubox in OpenWrt before 18.06.7 and 19.x before 19.07.1 has a tagged binary data JSON serialization vulnerability that may cause a stack based buffer overflow.
References
Link | Resource |
---|---|
https://github.com/openwrt/openwrt/commits/master | Patch Third Party Advisory |
https://openwrt.org/advisory/2020-01-31-2 | Vendor Advisory |
https://nvd.nist.gov/vuln/detail/CVE-2020-7248#range-4512438 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
|
Information
Published : 2020-03-16 14:15
Updated : 2022-09-02 20:55
NVD link : CVE-2020-7248
Mitre link : CVE-2020-7248
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
openwrt
- openwrt