Vulnerabilities > CVE-2021-36134 - Out-of-bounds Write vulnerability in Netop Vision PRO

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

netop

CWE-787

NVD

Published: 2021-09-27

Updated: 2021-10-04

Summary

Out of bounds write vulnerability in the JPEG parsing code of Netop Vision Pro up to and including 9.7.2 allows an adjacent unauthenticated attacker to write to arbitrary memory potentially leading to a Denial of Service (DoS).

Vulnerable Configurations

Part	Description	Count
Application	Netop Netop Vision PRO 9.6 Netop Vision PRO 9.6.5 Netop Vision PRO 9.7 Netop Vision PRO 9.7.1 Netop Vision PRO 9.7.2	5
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.mcafee.com/blogs/?p=127255&preview=true