CVE-2021-36134

HIGH

Netop Vision Pro <9.7.2 - Memory Corruption

Title source: llm
STIX 2.1

Description

Out of bounds write vulnerability in the JPEG parsing code of Netop Vision Pro up to and including 9.7.2 allows an adjacent unauthenticated attacker to write to arbitrary memory potentially leading to a Denial of Service (DoS).

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.mcafee.com/blogs/?p=127255&preview=true

Scores

CVSS v3 7.4
EPSS 0.0053
EPSS Percentile 40.7%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Details

CWE
CWE-787
Status published
Products (1)
netop/vision_pro < 9.7.2
Published Sep 27, 2021
Tracked Since Feb 18, 2026