CVE-2025-14015
BaseFortify
Publication date: 2025-12-04
Last updated on: 2025-12-08
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| h3c | magic_b0 | 100r002 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-120 | The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a buffer overflow in the EditWlanMacList function of the H3C Magic B0 device, specifically in the /goform/aspForm file. It occurs due to improper handling of an argument parameter, allowing remote attackers to exploit it. The exploit is publicly available, and the vendor has not responded to the disclosure.
How can this vulnerability impact me? :
Exploitation of this vulnerability can lead to a buffer overflow, which may allow remote attackers to execute arbitrary code, cause denial of service, or compromise the affected device. This can result in loss of confidentiality, integrity, and availability of the device and its network.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability impacts the confidentiality, integrity, and availability of the affected system, which are core principles in many compliance standards such as GDPR and HIPAA. A successful exploit could lead to unauthorized access or disruption of services, potentially resulting in data breaches or loss of sensitive information. Therefore, the presence of this vulnerability could hinder compliance with these regulations by exposing protected data to risk and failing to maintain required security controls. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by monitoring for unusual or suspicious requests to the /goform/aspForm endpoint, specifically targeting the EditWlanMacList parameter with abnormally large or malformed inputs that could trigger a buffer overflow. Since a public exploit exists, network intrusion detection systems (NIDS) or web application firewalls (WAF) can be configured to alert on such patterns. However, no specific detection commands or signatures are provided in the available resources. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include replacing the affected H3C Magic B0 device running firmware up to 100R002 with an alternative product, as no patches or vendor-provided fixes are currently available. Additionally, restricting network access to the vulnerable endpoint, implementing strict firewall rules, and monitoring for exploit attempts can help reduce risk until the device is replaced. [1]