Description
A value in ATCMD will be misinterpreted by printf, causing incorrect output and possibly out-of-bounds memory access
CVSS breakdown
CVSS 3.1
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
None
Integrity
None
Availability
High
Affected products
- ASR / Falcon/Crane0 – CP01.057.067
References
- VENDOR_ADVISORYhttps://www.asrmicro.com/en/goods/psirt?cid=38