VYPR
← All advisories
Unrated severityNVD Advisory· Published Jan 26, 2023· Updated Nov 4, 2025

CVE-2022-40991

CVE-2022-40991

Description

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that manages the 'firmwall domain WORD description (WORD|null)' command template.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Stack-based buffer overflow in DetranCLI of Siretta QUARTZ-GOLD allows arbitrary command execution via specially-crafted network packet.

Vulnerability

A stack-based buffer overflow vulnerability exists in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD firmware version G5.0.1.5-210720-141020 [1]. The vulnerability occurs in the function that manages the firmwall domain WORD description (WORD|null) command template. The software uses sprintf(stack_buffer, format_string, command_parameter_1, ...) without proper bounds checking, leading to a buffer overflow [1].

Exploitation

An attacker must have high privileges (PR:H) to access the DetranCLI interface over the network (AV:N) [1]. The attack requires sending a sequence of specially-crafted requests to trigger the buffer overflow [1]. No user interaction is needed (UI:N).

Impact

Successful exploitation allows arbitrary command execution on the device, resulting in complete compromise of confidentiality, integrity, and availability (C:H/I:H/A:H) [1].

Mitigation

As of the publication date, no fix has been announced. The vendor has not released a patched firmware version [1].

References
  1. TALOS-2022-1613 || Cisco Talos Intelligence Group

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • Siretta/QUARTZ-GOLDllm-fuzzy
    Range: = G5.0.1.5-210720-141020
  • Siretta/QUARTZ-GOLDv5
    Range: G5.0.1.5-210720-141020

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.