ID CVE-2022-27631
Summary A memory corruption vulnerability exists in the httpd unescape functionality of DD-WRT Revision 32270 - Revision 48599. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability.
References
Vulnerable Configurations
  • cpe:2.3:o:dd-wrt:dd-wrt:*:*:*:*:*:*:*:*
    cpe:2.3:o:dd-wrt:dd-wrt:*:*:*:*:*:*:*:*
CVSS
Base: None
Impact:
Exploitability:
CWE CWE-787
CAPEC
Access
VectorComplexityAuthentication
Impact
ConfidentialityIntegrityAvailability
Last major update 11-08-2022 - 12:54
Published 05-08-2022 - 22:15
Last modified 11-08-2022 - 12:54
Back to Top