CVE-2025-41679
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-21
Last updated on: 2025-11-06
Assigner: CERT VDE
Description
Description
An unauthenticated remote attacker could exploit a buffer overflow vulnerability in the device causing a denial of service that affects only the network initializing wizard (Conftool) service.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| mbconnectline | mbnet.mini_firmware | to 2.3.3 (exc) |
| mbconnectline | mbnet.mini | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a buffer overflow in the network initializing wizard (Conftool) service of the device. It can be exploited remotely by an unauthenticated attacker, causing the service to crash and resulting in a denial of service.
How can this vulnerability impact me? :
The impact of this vulnerability is a denial of service condition affecting the network initializing wizard (Conftool) service, which could disrupt network setup or configuration processes on the affected device.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70