What the vulnerability does
01Description
Memory corruption when user provides data for FM HCI command control operations.
CVE-2024-33052
HIGH
CVE-2024-33052: Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in FM Host
CVSS base score
7.8/10
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Key dates
02Disclosure timeline
September 2, 2024
CVE published
September 5, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2023-32972 QTS, QuTS hero, QuTScloud
CVE-2025-8136 TOTOLINK A702R HTTP POST Request formFilter buffer overflow
CVE-2026-12192 GALAYOU Y4 Web Server buffer overflow
CVE-2023-41292 QTS, QuTS hero, QuTScloud
CVE-2021-1439 Cisco Aironet Access Points FlexConnect Multicast DNS Denial of Service Vulnerability
