CVE-2021-31578
CVE-2021-31578
In short
Boa web server has a memory overflow flaw that allows someone nearby on the network to gain higher privileges without needing to interact with the system. This is dangerous because attackers can take control of the server remotely.
Technical detail
A stack buffer overflow vulnerability in Boa allows a proximal attacker to achieve privilege escalation without additional execution privileges or user interaction. The attack vector is network-based, with the flaw triggered through crafted input to the web server, resulting in arbitrary code execution with elevated privileges.
Summary generated and translated by AI from the official description.
In Boa, there is a possible escalation of privilege due to a stack buffer overflow. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.
Affected products
MediaTek, Inc. · EN7528, EN7580Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →