Improper Input Validation vulnerability in Microchip Techology Advanced Software Framework example DHCP server can cause remote code execution through a buffer overflow.
This vulnerability is associated with program files tinydhcpserver.C and program routines lwip_dhcp_find_option.
This issue affects Advanced Software Framework: through 3.52.0.2574.
ASF is no longer being supported. Apply provided workaround or migrate to an actively maintained framework.
Metrics
Affected Vendors & Products
References
History
Fri, 22 Nov 2024 12:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Mon, 12 Aug 2024 15:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|
Thu, 08 Aug 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Microchip
Microchip advanced Software Framework |
|
CPEs | cpe:2.3:a:microchip:advanced_software_framework:*:*:*:*:*:*:*:* | |
Vendors & Products |
Microchip
Microchip advanced Software Framework |
|
Metrics |
ssvc
|
Thu, 08 Aug 2024 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper Input Validation vulnerability in Microchip Techology Advanced Software Framework example DHCP server can cause remote code execution through a buffer overflow. This vulnerability is associated with program files tinydhcpserver.C and program routines lwip_dhcp_find_option. This issue affects Advanced Software Framework: through 3.52.0.2574. | Improper Input Validation vulnerability in Microchip Techology Advanced Software Framework example DHCP server can cause remote code execution through a buffer overflow. This vulnerability is associated with program files tinydhcpserver.C and program routines lwip_dhcp_find_option. This issue affects Advanced Software Framework: through 3.52.0.2574. ASF is no longer being supported. Apply provided workaround or migrate to an actively maintained framework. |
Thu, 08 Aug 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper Input Validation vulnerability in Microchip Techology Advanced Software Framework example DHCP server can cause remote code execution through a buffer overflow. This vulnerability is associated with program files tinydhcpserver.C and program routines lwip_dhcp_find_option. This issue affects Advanced Software Framework: through 3.52.0.2574. | |
Title | Remote Code Execution in Advanced Software Framework DHCP server | |
Weaknesses | CWE-120 CWE-20 |
|
References |
| |
Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: Microchip
Published: 2024-08-08T15:01:09.055Z
Updated: 2024-09-19T13:06:47.103Z
Reserved: 2024-08-05T14:10:12.165Z
Link: CVE-2024-7490
Vulnrichment
Updated: 2024-09-19T13:06:47.103Z
NVD
Status : Modified
Published: 2024-08-08T15:15:19.057
Modified: 2024-11-21T09:51:35.350
Link: CVE-2024-7490
Redhat
No data.