CVE-2021-25328

HIGH

Skyworth Digital Technology RN510 V.3.1.0.4 - Buffer Overflow

Title source: llm
STIX 2.1

Description

Skyworth Digital Technology RN510 V.3.1.0.4 RN510 V.3.1.0.4 contains a buffer overflow vulnerability in /cgi-bin/app-staticIP.asp. An authenticated attacker can send a specially crafted request to endpoint which can lead to a denial of service (DoS) or possible code execution on the device.

References (3)

Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://s3curityb3ast.github.io/KSA-Dev-011.md
Exploit, Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2021/May/5
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/162450/Shenzhen-Skyworth-RN510-Buffer-Overflow.html

Scores

CVSS v3 8.8
EPSS 0.0493
EPSS Percentile 89.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-120
Status published
Products (1)
skyworthdigital/rn510_firmware 3.1.0.4
Published Apr 09, 2021
Tracked Since Feb 18, 2026