Home / Vulnerability Intelligence / CVE-2026-3701

CVE-2026-3701 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: March 8, 2026

H3C Magic B1 - Buffer Overflow

Published: March 8, 2026Updated: March 8, 2026Remote Exploitable

Overview

H3C Magic B1 up to 100R004 contains a buffer overflow caused by manipulation of the argument param in Edit_BasicSSID_5G function in /goform/aspForm, letting remote attackers execute code, exploit requires crafted request.

Severity & Score

Severity: High

CVSS Score: 8.8

Impact

Remote attackers can cause buffer overflow, potentially leading to remote code execution and full system compromise.

Mitigation

Update to the latest version or patch provided by the vendor.

References

https://github.com/saltedfisholdxu/vul/blob/main/Magic%20B1/6_b1-report.md
https://vuldb.com/?ctiid.349647
https://vuldb.com/?id.349647
https://vuldb.com/?submit.765771

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-3701
Severity: High
CVSS Score: 8.8
Type: buffer_overflow
Status: new

CWE

CWE-119

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H