Buffer Overflow Vulnerability in Swisslog Healthcare Nexus Panel

Buffer Overflow Vulnerability in Swisslog Healthcare Nexus Panel

CVE-2021-37165 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When a message is sent to the HMI TCP socket, it is forwarded to the hmiProcessMsg function through the pendingQ, and may lead to remote code execution.

Learn more about our Web Application Penetration Testing UK.