SkyStream EMR5000 1.16 through 1.18 does not drop packets or disable the Ethernet interface when the buffers are full, which allows remote attackers to cause a denial of service (null pointer exception and kernel panic) via a large number of packets.

Threat-Mapped Scoring

Score: 1.5

Priority: P4 - Informational (Low)

• S10 – Denial of Service

EPSS

Score: 0.02747
Percentile: 0.85373

CVSS Scoring

Mapped CWE(s)

• CWE-476 : NULL Pointer Dereference

Affected Products

• cpe:2.3:h:skystream:emr5000:1.16:*:*:*:*:*:*:*
• cpe:2.3:h:skystream:emr5000:1.17:*:*:*:*:*:*:*
• cpe:2.3:h:skystream:emr5000:1.18:*:*:*:*:*:*:*

← Back to Home