CVE-2018-1000537

Severity CVSS v4.0:
Pending analysis
Type:
CWE-119 Buffer Errors
Publication date:
26/06/2018
Last modified:
07/11/2023

Description

Marlin Firmware Marlin version 1.1.x and earlier contains a Buffer Overflow vulnerability in cardreader.cpp (Depending on branch/version) that can result in Arbitrary code execution. This attack appear to be exploitable via Crafted G-Code instruction/file is sent to the printer.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:marlinfw:marlin_firmware:*:*:*:*:*:*:*:* 1.1.0 (including)