Buffer overflow in Sharp NEC Display Solutions products - CVE-2021-20699

 

Buffer overflow in Sharp NEC Display Solutions products - CVE-2021-20699

Published: September 20, 2021


Vulnerability identifier: #VU56694
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
CVE-ID: CVE-2021-20699
CWE-ID: CWE-119
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vendor: Sharp NEC Display Solutions
Affected software:
UN462A
UN462VA
UN492S
UN492VS
UN552A
UN552S
UN552VS
UN552
UN552V
UX552S
UX552
V864Q
C861Q
P754Q
V754Q
C751Q
V984Q
C981Q
P654Q
V654Q
C651Q
V554Q
P404
P484
P554
V404
V484
V554
V404-T
V484-T
V554-T
C501
C551
C431

Detailed vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error. A remote attacker can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.


How to mitigate CVE-2021-20699

Install updates from vendor's website.

Sources