CVE-2024-3286 | THREATINT

Description

A buffer overflow vulnerability was identified in some Lenovo printers that could allow an unauthenticated user to trigger a device restart by sending a specially crafted web request.

PUBLISHED Reserved 2024-04-03 | Published 2024-05-16 | Updated 2024-09-06 | Assigner lenovo

HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Problem types

CWE-121: Stack-based Buffer Overflow

Product status

Default status

unaffected

various

affected

Credits

Lenovo thanks China Information Technology Innovation Vulnerability Database (CITIVD) and Chaitin for reporting this issue. finder

References

iknow.lenovo.com.cn/detail/421500

www.lenovoimage.com/psirt/notice/158605.html

iknow.lenovo.com.cn/detail/421500

www.lenovoimage.com/psirt/notice/158605.html

cve.org (CVE-2024-3286)

nvd.nist.gov (CVE-2024-3286)

Download JSON