6.5
CVSSv2

CVE-2021-25328

Published: 09/04/2021 Updated: 04/05/2021
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Vulnerability Summary

Skyworth Digital Technology RN510 V.3.1.0.4 RN510 V.3.1.0.4 contains a buffer overflow vulnerability in /cgi-bin/app-staticIP.asp. An authenticated attacker can send a specially crafted request to endpoint which can lead to a denial of service (DoS) or possible code execution on the device.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

skyworthdigital rn510_firmware 3.1.0.4

Mailing Lists

Shenzhen Skyworth RN510 suffers from a buffer overflow vulnerability that allows for remote code execution ...

Github Repositories

CVE-2021-25328 Proof-of-Concept (PoC) script to exploit CVE-2021-25328 Usage Achieves exploitation of CVE-2021-25328 chmod +x CVE-2021-25328sh /CVE-2021-25328sh -c <TargetIP> /CVE-2021-25328sh -l <ListoFIPs>