CNNVD-202509-4004 Information

CNNVD ID

CNNVD-202509-4004

Related CVE

CVE-2025-10942

• CNNVD Published: 2025-09-25

Description (Chinese)

H3C Magic B3是中国新华三（H3C）公司的一款无线路由器。 H3C Magic B3 100R002及之前版本存在安全漏洞，该漏洞源于对文件/goform/aspForm中函数AddMacList的参数param的错误操作，可能导致缓冲区溢出。

Description (English)

H3C Magic B3 is a wireless router of the Chinese company Xinhua III (H3C). There is a security loophole in H3C Magic B3 100R002 and earlier versions, which stems from an error in the paraam of the document/goform/aspForm function AddMacList, which could result in a spilling of the buffer zone.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

新华三

Published

2025-09-25

Last Modified

2026-02-24

References

https://github.com/lin-3-start/lin-cve/blob/main/H3C%2BMagic%2BB3/H3C%20routers%20Buffer%20overflow.md#poc https://vuldb.com/?submit.684667 https://vuldb.com/?id.325812 https://vuldb.com/?submit.651813 https://vuldb.com/?ctiid.325812