CyberSec.Space Logo
CVEブラウザに戻る

CVE-2021-21940

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0570%
EPSS Percentile12.53th
Published2021年10月12日
Last Modified2024年11月21日

Vulnerability Description

A heap-based buffer overflow vulnerability exists in the pushMuxer processRtspInfo functionality of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted network packet can lead to a heap buffer overflow. An attacker can send a malicious packet to trigger this vulnerability.

Affected Platforms (CPE)

💻
Anker

Eufy Homebase 2 Firmware

= 2.1.6.9h

References & Advisories

🔗 https://talosintelligence.com/vulnerability_reports/TALOS-2021-1369
🔗 https://talosintelligence.com/vulnerability_reports/TALOS-2021-1369

関連する脆弱性情報

CVE-2021-2124310.0

OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, a Kubernetes REST endpoint exposes two methods that deser...

CVE-2021-021110.0

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon ...

CVE-2021-3467910.0

Thycotic Password Reset Server before 5.3.0 allows credential disclosure.

CVE-2021-2124410.0

OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, There is a vulnerability that enabled pre-auth server sid...