H3C Magic B1 is a network management system used by some organizations for device monitoring and configuration. This vulnerability allows attackers to execute arbitrary code on the affected H3C Magic B1 instance by manipulating specific input parameters, leading to a buffer overflow. The exploit can be triggered remotely without requiring any user interaction or authentication.
You're affected if you use A weakness. Affected versions: 100 If you don't recognise this software, you're probably not affected.
To fix this vulnerability, upgrade to H3C Magic B1 version 100R005 or later. You can download the latest patch from the H3C website: https://www.h3c.com/en/products/Magic-B1/Patch-Release-Notes. If an immediate upgrade isn't possible, restrict network access to your H3C Magic B1 instance (firewall it from the public internet) and monitor for suspicious activity.