CVE-2021-31642 is a medium-severity Integer Overflow or Wraparound (CWE-190) vulnerability in Chiyu-Tech Semac S2 Firmware. Its CVSS base score is 6.5 (Medium).
Operationally, ranked in the top 4.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
A denial of service condition exists after an integer overflow in several IoT devices from CHIYU Technology, including BIOSENSE, Webpass, and BF-630, BF-631, and SEMAC. The vulnerability can be explored by sending an unexpected integer (> 32 bits) on the…
more
page parameter that will crash the web portal and making it unavailable until a reboot of the device.