How severe is CVE-2021-31658?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.1 out of 10.

What type of vulnerability is CVE-2021-31658?

This is classified as CWE-129, which is a common weakness in software security.

CVE-2021-31658 - HIGH Severity | CVSS 8.1

Vulnerability Description

TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is affected by an Array index error. The interface that provides the "device description" function only judges the length of the received data, and does not filter special characters. This vulnerability will cause the application to crash, and all device configuration information will be erased.

Related Vulnerabilities

CVE-2017-7228

HIGH

CVSS:8.2(High)

An issue (known as XSA-212) was discovered in Xen, with fixes available for 4.8.x, 4.7.x, 4.6.x, 4.5.x, and 4.4.x. The earlier XSA-29 fix introduced an insufficient check on XENMEM_exchange input, all...

CWE-1292017

CVE-2014-9948

HIGH

CVSS:7.8(High)

In TrustZone in all Android releases from CAF using the Linux kernel, an Improper Validation of Array Index vulnerability could potentially exist.

CWE-1292014

CVE-2016-8815

HIGH

CVSS:7.8(High)

All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where a value passed from a user to the driver is used withou...

CWE-1292016

CVE-2016-8816

HIGH

CVSS:7.8(High)

CWE-1292016

CVE-2017-0322

HIGH

CVSS:7.8(High)

All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler where a value passed from a user to the driver is not correctly validated and ...

CWE-1292017

CVE-2017-0345

HIGH

CVSS:7.8(High)

All versions of the NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where user provided input used as an array size is not co...

CWE-1292017