CVE-2018-10601

HIGH Year: 2018
CVSS v3 Score
8.2
High
CVSS v2 Score
5.4
Medium
Weakness Type
CWE-121
View all →

Vulnerability Description

IntelliVue Patient Monitors MP Series (including MP2/X2/MP30/MP50/MP70/NP90/MX700/800) Rev B-M, IntelliVue Patient Monitors MX (MX400-550) Rev J-M and (X3/MX100 for Rev M only), and Avalon Fetal/Maternal Monitors FM20/FM30/FM40/FM50 with software Revisions F.0, G.0 and J.3 have a vulnerability that exposes an "echo" service, in which an attacker-sent buffer to an attacker-chosen device address within the same subnet is copied to the stack with no boundary checks, hence resulting in stack overflow.

Related Vulnerabilities

CVE-2021-21905

HIGH
CVSS:8.2(High)

Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations. The Garrett iC Module exposes an au...

CWE-1212021

CVE-2021-21906

HIGH
CVSS:8.2(High)

Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations. The Garrett iC Module exposes an au...

CWE-1212021

CVE-2022-26873

HIGH
CVSS:8.2(High)

A potential attacker can execute an arbitrary code at the time of the PEI phase and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosur...

CWE-1212022

CVE-2025-23388

HIGH
CVSS:8.2(High)

A Stack-based Buffer Overflow vulnerability in SUSE rancher allows for denial of service.This issue affects rancher: from 2.8.0 before 2.8.13, from 2.9.0 before 2.9.7, from 2.10.0 before 2.10.3.

CWE-1212025

CVE-2019-19333

HIGH
CVSS:8.1(High)

In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files with a leaf of type "bits". An application that uses libyang to parse untrus...

CWE-1212019

CVE-2019-19334

HIGH
CVSS:8.1(High)

In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files with a leaf of type "identityref". An application that uses libyang to parse...

CWE-1212019