Search criteria
3 vulnerabilities found for itk-12d-1\(bk\)tel_firmware by nec
FKIE_CVE-2023-3741
Vulnerability from fkie_nvd - Published: 2023-11-30 01:15 - Updated: 2024-11-21 08:17
Severity ?
Summary
An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-6dgs-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3D34FA4D-DBF4-4A41-9E11-74B2BB3E1824",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-6dgs-1\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E2F866A1-FE6B-4C03-8738-1201C2E6848F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-32lcgs-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "69FECFD5-0ACB-41B0-9AD8-1EA6EB0D1205",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-32lcgs-1\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "559BCF01-8716-4F42-8FA2-95DB68744E91",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-32tcgs-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B1F6B893-3360-42B3-8779-B4F166BEBADC",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-32tcgs-1\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "977F829C-51E0-4408-86EB-4A5F4F2AF02B",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-6d-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DC34950E-33C6-4CDF-94F9-CB6D7F7D3953",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-6d-1\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5D81DD6F-5026-4F53-BEA7-F66249EAFC55",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-12d-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "15FA9B5C-BF54-46BA-97CA-42D4A071B0C8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-12d-1\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7DCF0DF4-594A-46C5-A3DC-BB38856D6A52",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-8lcx-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "37E9D966-2B63-4DFF-BA57-0B1A0556BCC4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-8lcx-1\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "083510DD-C5B1-44B1-9CB7-D5A42FBAAC9A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-8tcgx-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C3AE0212-F703-40AE-A20F-5987DFE88363",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-8tcgx-1\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0E484F75-1CEB-43EE-B56A-8449562F1D96",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-6dgs-1a\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "10375D05-E64E-4BF9-8A2C-46AE94B13A1A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-6dgs-1a\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8D73BE74-0868-462E-B8C7-4A1540EDF103",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-32lcgs-1a\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BFADF7DF-3198-4249-BF53-7CAF692E033F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-32lcgs-1a\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DE7538E9-EA61-4494-9958-475097C1A655",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-32tcgs-1a\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EAF30F9E-0CAE-4E3D-94D0-5131D419E7A5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-32tcgs-1a\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0F18ADDA-F8E7-4502-8413-89335DAD271A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-6dgs-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F5F0F713-C37A-422B-BD01-99E91F35CA2F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-6dgs-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BCE2B688-B9DA-405C-B4CC-0A8CC3CB0BB6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-32lcgs-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CC8ABE27-1577-4D4E-90C4-D7EDB7EBFC6A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-32lcgs-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "75A896BD-D903-455B-B188-B8CDBE8AAFFC",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-32tcgs-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7E699313-5667-4261-B744-930B9E1B8593",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-32tcgs-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D173DF06-51BA-49A2-A708-BD3050BA52D2",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-6d-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B103B15-D567-484E-BA7C-56B7461213D0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-6d-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3018EA32-2B4A-46ED-9573-FF40233B1F65",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-12d-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D18351C0-30C7-44A3-B958-45398A2B6494",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-12d-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EDE89E1E-EEF5-46C4-8E09-11C212481BFD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-6dg-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9D7A06E0-238E-421E-AA0C-A6213F20250E",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-6dg-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "749CF6D9-E0BC-40E0-960F-A8BE63F9C644",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-12dg-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9EBC02EF-7A5E-4145-AB39-765A0C65F37C",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-12dg-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A94570B8-1E9E-4D95-8CE0-7D03A9C90BDD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-8lcx-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "34A49F73-9178-4F55-9CF8-043CA50F82C5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-8lcx-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8C0DD87-4B3B-45CF-BBFF-37287E9B3813",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-8lcg-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7EE144BC-8DCC-4036-ABD7-B68F306839B5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-8lcg-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9DD939D2-E4CF-4EC9-971A-55A240A59BCA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-32lcg-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D077F3E8-87E3-4613-A980-9111B88B48B0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-32lcg-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4DF0D11E-592C-4514-9F41-56C96C57E7F7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-8tcgx-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31A24B52-4C28-4ABC-AAAA-1FC0CAE732DF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-8tcgx-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0D39AA9A-FA93-4445-A7B1-F956FE7079CC",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nec:itk-32tcg-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "632954BD-9AE3-446B-A4CB-99495700867F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nec:itk-32tcg-1p\\(bk\\)tel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7D1447B2-28E9-400B-86AF-10606CEC3543",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.\n\n"
},
{
"lang": "es",
"value": "Una vulnerabilidad de inyecci\u00f3n de comandos del sistema operativo en NEC Platforms DT900 and DT900S Series, todas las versiones, permite a un atacante ejecutar cualquier comando en el dispositivo."
}
],
"id": "CVE-2023-3741",
"lastModified": "2024-11-21T08:17:57.493",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2023-11-30T01:15:07.187",
"references": [
{
"source": "psirt-info@cyber.jp.nec.com",
"tags": [
"Broken Link"
],
"url": "https://https://jpn.nec.com/security-info/secinfo/nv23-011_en.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "https://https://jpn.nec.com/security-info/secinfo/nv23-011_en.html"
}
],
"sourceIdentifier": "psirt-info@cyber.jp.nec.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-78"
}
],
"source": "psirt-info@cyber.jp.nec.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-78"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2023-3741 (GCVE-0-2023-3741)
Vulnerability from cvelistv5 – Published: 2023-11-30 00:55 – Updated: 2024-12-02 19:03
VLAI?
Summary
An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.
Severity ?
No CVSS data available.
CWE
- CWE-78 - Improper Neutralization of Special Elements used in an OS Command
Assigner
References
Impacted products
Credits
Mr. Gianluca Altomani.
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T07:01:57.513Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://https://jpn.nec.com/security-info/secinfo/nv23-011_en.html"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-3741",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2023-12-04T20:02:20.376614Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-12-02T19:03:40.069Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "ITK-6DGS-1(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32LCGS-1(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32TCGS-1(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-6D-1(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-12D-1(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-8LCX-1(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-8TCGX-1(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-6DGS-1A(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32LCGS-1A(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32TCGS-1A(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-6DGS-1P(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32LCGS-1P(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32TCGS-1P(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-6D-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-12D-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-6DG-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-12DG-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-8LCX-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-8LCG-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32LCG-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-8TCGX-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32TCG-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Mr. Gianluca Altomani."
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eAn OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.\u003c/p\u003e"
}
],
"value": "An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.\n\n"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-11-30T00:55:52.643Z",
"orgId": "f2760a35-e0d8-4637-ac4c-cc1a2de3e282",
"shortName": "NEC"
},
"references": [
{
"url": "https://https://jpn.nec.com/security-info/secinfo/nv23-011_en.html"
}
],
"source": {
"discovery": "EXTERNAL"
},
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "f2760a35-e0d8-4637-ac4c-cc1a2de3e282",
"assignerShortName": "NEC",
"cveId": "CVE-2023-3741",
"datePublished": "2023-11-30T00:55:50.692Z",
"dateReserved": "2023-07-18T00:45:34.513Z",
"dateUpdated": "2024-12-02T19:03:40.069Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2023-3741 (GCVE-0-2023-3741)
Vulnerability from nvd – Published: 2023-11-30 00:55 – Updated: 2024-12-02 19:03
VLAI?
Summary
An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.
Severity ?
No CVSS data available.
CWE
- CWE-78 - Improper Neutralization of Special Elements used in an OS Command
Assigner
References
Impacted products
| Vendor | Product | Version | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| NEC Platforms, Ltd | ITK-6DGS-1(BK) TEL |
Affected:
all versions
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Credits
Mr. Gianluca Altomani.
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T07:01:57.513Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://https://jpn.nec.com/security-info/secinfo/nv23-011_en.html"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-3741",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2023-12-04T20:02:20.376614Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-12-02T19:03:40.069Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "ITK-6DGS-1(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32LCGS-1(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32TCGS-1(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-6D-1(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-12D-1(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-8LCX-1(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-8TCGX-1(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-6DGS-1A(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32LCGS-1A(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32TCGS-1A(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-6DGS-1P(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32LCGS-1P(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32TCGS-1P(BK) TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-6D-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-12D-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-6DG-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-12DG-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-8LCX-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-8LCG-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32LCG-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-8TCGX-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
},
{
"product": "ITK-32TCG-1P(BK)TEL",
"vendor": "NEC Platforms, Ltd",
"versions": [
{
"status": "affected",
"version": "all versions"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Mr. Gianluca Altomani."
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eAn OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.\u003c/p\u003e"
}
],
"value": "An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.\n\n"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-11-30T00:55:52.643Z",
"orgId": "f2760a35-e0d8-4637-ac4c-cc1a2de3e282",
"shortName": "NEC"
},
"references": [
{
"url": "https://https://jpn.nec.com/security-info/secinfo/nv23-011_en.html"
}
],
"source": {
"discovery": "EXTERNAL"
},
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "f2760a35-e0d8-4637-ac4c-cc1a2de3e282",
"assignerShortName": "NEC",
"cveId": "CVE-2023-3741",
"datePublished": "2023-11-30T00:55:50.692Z",
"dateReserved": "2023-07-18T00:45:34.513Z",
"dateUpdated": "2024-12-02T19:03:40.069Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}