Search
Find a vulnerability
Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
24 vulnerabilities by Internet Initiative Japan Inc.
CVE-2022-41986 (GCVE-0-2022-41986)
Vulnerability from nvd – Published: 2022-10-24 00:00 – Updated: 2025-05-07 16:14
VLAI
Summary
Information disclosure vulnerability in Android App 'IIJ SmartKey' versions prior to 2.1.4 allows an attacker to obtain a one-time password issued by the product under certain conditions.
Severity
7.5 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- Exposure of Sensitive Information to an Unauthorized Actor
- CWE-noinfo Not enough information
Assigner
References
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Internet Initiative Japan Inc. | IIJ SmartKey |
Affected:
versions prior to 2.1.4
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T12:56:39.229Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://play.google.com/store/apps/details?id=jp.ad.iij.smartkey2"
},
{
"tags": [
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN74534998/index.html"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2022-41986",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-05-07T16:12:13.238597Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-noinfo Not enough information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-07T16:14:08.390Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "IIJ SmartKey",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "versions prior to 2.1.4"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Information disclosure vulnerability in Android App \u0027IIJ SmartKey\u0027 versions prior to 2.1.4 allows an attacker to obtain a one-time password issued by the product under certain conditions."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Exposure of Sensitive Information to an Unauthorized Actor",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-10-24T00:00:00.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"url": "https://play.google.com/store/apps/details?id=jp.ad.iij.smartkey2"
},
{
"url": "https://jvn.jp/en/jp/JVN74534998/index.html"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2022-41986",
"datePublished": "2022-10-24T00:00:00.000Z",
"dateReserved": "2022-10-07T00:00:00.000Z",
"dateUpdated": "2025-05-07T16:14:08.390Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2018-0584 (GCVE-0-2018-0584)
Vulnerability from nvd – Published: 2018-06-26 14:00 – Updated: 2024-08-05 03:28
VLAI
Summary
IIJ SmartKey App for Android version 2.1.0 and earlier allows remote attackers to bypass authentication [effect_of_bypassing_authentication] via unspecified vectors.
Severity
No CVSS data available.
CWE
- Authentication bypass
Assigner
References
1 reference
| URL | Tags |
|---|---|
| http://jvn.jp/en/jp/JVN27137002/index.html | third-party-advisoryx_refsource_JVN |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Internet Initiative Japan Inc. | IIJ SmartKey App for Android |
Affected:
version 2.1.0 and earlier
|
Date Public
2018-06-26 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T03:28:11.147Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#27137002",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN27137002/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "IIJ SmartKey App for Android",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "version 2.1.0 and earlier"
}
]
}
],
"datePublic": "2018-06-26T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "IIJ SmartKey App for Android version 2.1.0 and earlier allows remote attackers to bypass authentication [effect_of_bypassing_authentication] via unspecified vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Authentication bypass",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-06-26T13:57:01.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVN#27137002",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN27137002/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2018-0584",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "IIJ SmartKey App for Android",
"version": {
"version_data": [
{
"version_value": "version 2.1.0 and earlier"
}
]
}
}
]
},
"vendor_name": "Internet Initiative Japan Inc."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "IIJ SmartKey App for Android version 2.1.0 and earlier allows remote attackers to bypass authentication [effect_of_bypassing_authentication] via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Authentication bypass"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#27137002",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN27137002/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2018-0584",
"datePublished": "2018-06-26T14:00:00.000Z",
"dateReserved": "2017-11-27T00:00:00.000Z",
"dateUpdated": "2024-08-05T03:28:11.147Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2017-10856 (GCVE-0-2017-10856)
Vulnerability from nvd – Published: 2017-09-15 17:00 – Updated: 2024-08-05 17:50
VLAI
Summary
SEIL/X 4.60 to 5.72, SEIL/B1 4.60 to 5.72, SEIL/x86 3.20 to 5.72, SEIL/BPV4 5.00 to 5.72 allows remote attackers to cause a temporary failure of the device's encrypted communications via a specially crafted packet.
Severity
No CVSS data available.
CWE
- Denial-of-service (DoS)
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://jvn.jp/en/jp/JVN76692689/index.html | third-party-advisoryx_refsource_JVN |
| http://www.seil.jp/support/security/a01811.html | x_refsource_MISC |
Impacted products
4 products
| Vendor | Product | Version | |
|---|---|---|---|
| Internet Initiative Japan Inc. | SEIL/X |
Affected:
4.60 to 5.72
|
|
| Internet Initiative Japan Inc. | SEIL/B1 |
Affected:
4.60 to 5.72
|
|
| Internet Initiative Japan Inc. | SEIL/x86 |
Affected:
3.20 to 5.72
|
|
| Internet Initiative Japan Inc. | SEIL/BPV4 |
Affected:
5.00 to 5.72
|
Date Public
2017-09-11 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T17:50:12.562Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#76692689",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN76692689/index.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.seil.jp/support/security/a01811.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "SEIL/X",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "4.60 to 5.72"
}
]
},
{
"product": "SEIL/B1",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "4.60 to 5.72"
}
]
},
{
"product": "SEIL/x86",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "3.20 to 5.72"
}
]
},
{
"product": "SEIL/BPV4",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "5.00 to 5.72"
}
]
}
],
"datePublic": "2017-09-11T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "SEIL/X 4.60 to 5.72, SEIL/B1 4.60 to 5.72, SEIL/x86 3.20 to 5.72, SEIL/BPV4 5.00 to 5.72 allows remote attackers to cause a temporary failure of the device\u0027s encrypted communications via a specially crafted packet."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Denial-of-service (DoS)",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-09-15T16:57:01.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVN#76692689",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "https://jvn.jp/en/jp/JVN76692689/index.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.seil.jp/support/security/a01811.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2017-10856",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "SEIL/X",
"version": {
"version_data": [
{
"version_value": "4.60 to 5.72"
}
]
}
},
{
"product_name": "SEIL/B1",
"version": {
"version_data": [
{
"version_value": "4.60 to 5.72"
}
]
}
},
{
"product_name": "SEIL/x86",
"version": {
"version_data": [
{
"version_value": "3.20 to 5.72"
}
]
}
},
{
"product_name": "SEIL/BPV4",
"version": {
"version_data": [
{
"version_value": "5.00 to 5.72"
}
]
}
}
]
},
"vendor_name": "Internet Initiative Japan Inc."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "SEIL/X 4.60 to 5.72, SEIL/B1 4.60 to 5.72, SEIL/x86 3.20 to 5.72, SEIL/BPV4 5.00 to 5.72 allows remote attackers to cause a temporary failure of the device\u0027s encrypted communications via a specially crafted packet."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Denial-of-service (DoS)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#76692689",
"refsource": "JVN",
"url": "https://jvn.jp/en/jp/JVN76692689/index.html"
},
{
"name": "http://www.seil.jp/support/security/a01811.html",
"refsource": "MISC",
"url": "http://www.seil.jp/support/security/a01811.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2017-10856",
"datePublished": "2017-09-15T17:00:00.000Z",
"dateReserved": "2017-07-04T00:00:00.000Z",
"dateUpdated": "2024-08-05T17:50:12.562Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2017-2153 (GCVE-0-2017-2153)
Vulnerability from nvd – Published: 2017-04-28 16:00 – Updated: 2024-08-05 13:48
VLAI
Summary
SEIL/x86 Fuji 1.70 to 5.62, SEIL/BPV4 5.00 to 5.62, SEIL/X1 1.30 to 5.62, SEIL/X2 1.30 to 5.62, SEIL/B1 1.00 to 5.62 allows remote attackers to cause a denial of service via specially crafted IPv4 UDP packets.
Severity
No CVSS data available.
CWE
- Denial-of-service (DoS)
Assigner
References
2 references
| URL | Tags |
|---|---|
| http://www.seil.jp/support/security/a01783.html | x_refsource_MISC |
| http://jvn.jp/en/jp/JVN86171513/index.html | third-party-advisoryx_refsource_JVN |
Impacted products
5 products
| Vendor | Product | Version | |
|---|---|---|---|
| Internet Initiative Japan Inc. | SEIL/x86 Fuji |
Affected:
1.70 to 5.62
|
|
| Internet Initiative Japan Inc. | SEIL/BPV4 |
Affected:
5.00 to 5.62
|
|
| Internet Initiative Japan Inc. | SEIL/X1 |
Affected:
1.30 to 5.62
|
|
| Internet Initiative Japan Inc. | SEIL/X2 |
Affected:
1.30 to 5.62
|
|
| Internet Initiative Japan Inc. | SEIL/B1 |
Affected:
1.00 to 5.62
|
Date Public
2017-04-28 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T13:48:04.413Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.seil.jp/support/security/a01783.html"
},
{
"name": "JVN#86171513",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN86171513/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "SEIL/x86 Fuji",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "1.70 to 5.62"
}
]
},
{
"product": "SEIL/BPV4",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "5.00 to 5.62"
}
]
},
{
"product": "SEIL/X1",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "1.30 to 5.62"
}
]
},
{
"product": "SEIL/X2",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "1.30 to 5.62"
}
]
},
{
"product": "SEIL/B1",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "1.00 to 5.62"
}
]
}
],
"datePublic": "2017-04-28T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "SEIL/x86 Fuji 1.70 to 5.62, SEIL/BPV4 5.00 to 5.62, SEIL/X1 1.30 to 5.62, SEIL/X2 1.30 to 5.62, SEIL/B1 1.00 to 5.62 allows remote attackers to cause a denial of service via specially crafted IPv4 UDP packets."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Denial-of-service (DoS)",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-04-28T15:57:01.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.seil.jp/support/security/a01783.html"
},
{
"name": "JVN#86171513",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN86171513/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2017-2153",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "SEIL/x86 Fuji",
"version": {
"version_data": [
{
"version_value": "1.70 to 5.62"
}
]
}
},
{
"product_name": "SEIL/BPV4",
"version": {
"version_data": [
{
"version_value": "5.00 to 5.62"
}
]
}
},
{
"product_name": "SEIL/X1",
"version": {
"version_data": [
{
"version_value": "1.30 to 5.62"
}
]
}
},
{
"product_name": "SEIL/X2",
"version": {
"version_data": [
{
"version_value": "1.30 to 5.62"
}
]
}
},
{
"product_name": "SEIL/B1",
"version": {
"version_data": [
{
"version_value": "1.00 to 5.62"
}
]
}
}
]
},
"vendor_name": "Internet Initiative Japan Inc."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "SEIL/x86 Fuji 1.70 to 5.62, SEIL/BPV4 5.00 to 5.62, SEIL/X1 1.30 to 5.62, SEIL/X2 1.30 to 5.62, SEIL/B1 1.00 to 5.62 allows remote attackers to cause a denial of service via specially crafted IPv4 UDP packets."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Denial-of-service (DoS)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.seil.jp/support/security/a01783.html",
"refsource": "MISC",
"url": "http://www.seil.jp/support/security/a01783.html"
},
{
"name": "JVN#86171513",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN86171513/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2017-2153",
"datePublished": "2017-04-28T16:00:00.000Z",
"dateReserved": "2016-12-01T00:00:00.000Z",
"dateUpdated": "2024-08-05T13:48:04.413Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-41986 (GCVE-0-2022-41986)
Vulnerability from cvelistv5 – Published: 2022-10-24 00:00 – Updated: 2025-05-07 16:14
VLAI
Summary
Information disclosure vulnerability in Android App 'IIJ SmartKey' versions prior to 2.1.4 allows an attacker to obtain a one-time password issued by the product under certain conditions.
Severity
7.5 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- Exposure of Sensitive Information to an Unauthorized Actor
- CWE-noinfo Not enough information
Assigner
References
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Internet Initiative Japan Inc. | IIJ SmartKey |
Affected:
versions prior to 2.1.4
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T12:56:39.229Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://play.google.com/store/apps/details?id=jp.ad.iij.smartkey2"
},
{
"tags": [
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN74534998/index.html"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2022-41986",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-05-07T16:12:13.238597Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-noinfo Not enough information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-07T16:14:08.390Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "IIJ SmartKey",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "versions prior to 2.1.4"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Information disclosure vulnerability in Android App \u0027IIJ SmartKey\u0027 versions prior to 2.1.4 allows an attacker to obtain a one-time password issued by the product under certain conditions."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Exposure of Sensitive Information to an Unauthorized Actor",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-10-24T00:00:00.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"url": "https://play.google.com/store/apps/details?id=jp.ad.iij.smartkey2"
},
{
"url": "https://jvn.jp/en/jp/JVN74534998/index.html"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2022-41986",
"datePublished": "2022-10-24T00:00:00.000Z",
"dateReserved": "2022-10-07T00:00:00.000Z",
"dateUpdated": "2025-05-07T16:14:08.390Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2018-0584 (GCVE-0-2018-0584)
Vulnerability from cvelistv5 – Published: 2018-06-26 14:00 – Updated: 2024-08-05 03:28
VLAI
Summary
IIJ SmartKey App for Android version 2.1.0 and earlier allows remote attackers to bypass authentication [effect_of_bypassing_authentication] via unspecified vectors.
Severity
No CVSS data available.
CWE
- Authentication bypass
Assigner
References
1 reference
| URL | Tags |
|---|---|
| http://jvn.jp/en/jp/JVN27137002/index.html | third-party-advisoryx_refsource_JVN |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Internet Initiative Japan Inc. | IIJ SmartKey App for Android |
Affected:
version 2.1.0 and earlier
|
Date Public
2018-06-26 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T03:28:11.147Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#27137002",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN27137002/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "IIJ SmartKey App for Android",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "version 2.1.0 and earlier"
}
]
}
],
"datePublic": "2018-06-26T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "IIJ SmartKey App for Android version 2.1.0 and earlier allows remote attackers to bypass authentication [effect_of_bypassing_authentication] via unspecified vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Authentication bypass",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-06-26T13:57:01.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVN#27137002",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN27137002/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2018-0584",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "IIJ SmartKey App for Android",
"version": {
"version_data": [
{
"version_value": "version 2.1.0 and earlier"
}
]
}
}
]
},
"vendor_name": "Internet Initiative Japan Inc."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "IIJ SmartKey App for Android version 2.1.0 and earlier allows remote attackers to bypass authentication [effect_of_bypassing_authentication] via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Authentication bypass"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#27137002",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN27137002/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2018-0584",
"datePublished": "2018-06-26T14:00:00.000Z",
"dateReserved": "2017-11-27T00:00:00.000Z",
"dateUpdated": "2024-08-05T03:28:11.147Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2017-10856 (GCVE-0-2017-10856)
Vulnerability from cvelistv5 – Published: 2017-09-15 17:00 – Updated: 2024-08-05 17:50
VLAI
Summary
SEIL/X 4.60 to 5.72, SEIL/B1 4.60 to 5.72, SEIL/x86 3.20 to 5.72, SEIL/BPV4 5.00 to 5.72 allows remote attackers to cause a temporary failure of the device's encrypted communications via a specially crafted packet.
Severity
No CVSS data available.
CWE
- Denial-of-service (DoS)
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://jvn.jp/en/jp/JVN76692689/index.html | third-party-advisoryx_refsource_JVN |
| http://www.seil.jp/support/security/a01811.html | x_refsource_MISC |
Impacted products
4 products
| Vendor | Product | Version | |
|---|---|---|---|
| Internet Initiative Japan Inc. | SEIL/X |
Affected:
4.60 to 5.72
|
|
| Internet Initiative Japan Inc. | SEIL/B1 |
Affected:
4.60 to 5.72
|
|
| Internet Initiative Japan Inc. | SEIL/x86 |
Affected:
3.20 to 5.72
|
|
| Internet Initiative Japan Inc. | SEIL/BPV4 |
Affected:
5.00 to 5.72
|
Date Public
2017-09-11 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T17:50:12.562Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "JVN#76692689",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN76692689/index.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.seil.jp/support/security/a01811.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "SEIL/X",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "4.60 to 5.72"
}
]
},
{
"product": "SEIL/B1",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "4.60 to 5.72"
}
]
},
{
"product": "SEIL/x86",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "3.20 to 5.72"
}
]
},
{
"product": "SEIL/BPV4",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "5.00 to 5.72"
}
]
}
],
"datePublic": "2017-09-11T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "SEIL/X 4.60 to 5.72, SEIL/B1 4.60 to 5.72, SEIL/x86 3.20 to 5.72, SEIL/BPV4 5.00 to 5.72 allows remote attackers to cause a temporary failure of the device\u0027s encrypted communications via a specially crafted packet."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Denial-of-service (DoS)",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-09-15T16:57:01.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"name": "JVN#76692689",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "https://jvn.jp/en/jp/JVN76692689/index.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.seil.jp/support/security/a01811.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2017-10856",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "SEIL/X",
"version": {
"version_data": [
{
"version_value": "4.60 to 5.72"
}
]
}
},
{
"product_name": "SEIL/B1",
"version": {
"version_data": [
{
"version_value": "4.60 to 5.72"
}
]
}
},
{
"product_name": "SEIL/x86",
"version": {
"version_data": [
{
"version_value": "3.20 to 5.72"
}
]
}
},
{
"product_name": "SEIL/BPV4",
"version": {
"version_data": [
{
"version_value": "5.00 to 5.72"
}
]
}
}
]
},
"vendor_name": "Internet Initiative Japan Inc."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "SEIL/X 4.60 to 5.72, SEIL/B1 4.60 to 5.72, SEIL/x86 3.20 to 5.72, SEIL/BPV4 5.00 to 5.72 allows remote attackers to cause a temporary failure of the device\u0027s encrypted communications via a specially crafted packet."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Denial-of-service (DoS)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "JVN#76692689",
"refsource": "JVN",
"url": "https://jvn.jp/en/jp/JVN76692689/index.html"
},
{
"name": "http://www.seil.jp/support/security/a01811.html",
"refsource": "MISC",
"url": "http://www.seil.jp/support/security/a01811.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2017-10856",
"datePublished": "2017-09-15T17:00:00.000Z",
"dateReserved": "2017-07-04T00:00:00.000Z",
"dateUpdated": "2024-08-05T17:50:12.562Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2017-2153 (GCVE-0-2017-2153)
Vulnerability from cvelistv5 – Published: 2017-04-28 16:00 – Updated: 2024-08-05 13:48
VLAI
Summary
SEIL/x86 Fuji 1.70 to 5.62, SEIL/BPV4 5.00 to 5.62, SEIL/X1 1.30 to 5.62, SEIL/X2 1.30 to 5.62, SEIL/B1 1.00 to 5.62 allows remote attackers to cause a denial of service via specially crafted IPv4 UDP packets.
Severity
No CVSS data available.
CWE
- Denial-of-service (DoS)
Assigner
References
2 references
| URL | Tags |
|---|---|
| http://www.seil.jp/support/security/a01783.html | x_refsource_MISC |
| http://jvn.jp/en/jp/JVN86171513/index.html | third-party-advisoryx_refsource_JVN |
Impacted products
5 products
| Vendor | Product | Version | |
|---|---|---|---|
| Internet Initiative Japan Inc. | SEIL/x86 Fuji |
Affected:
1.70 to 5.62
|
|
| Internet Initiative Japan Inc. | SEIL/BPV4 |
Affected:
5.00 to 5.62
|
|
| Internet Initiative Japan Inc. | SEIL/X1 |
Affected:
1.30 to 5.62
|
|
| Internet Initiative Japan Inc. | SEIL/X2 |
Affected:
1.30 to 5.62
|
|
| Internet Initiative Japan Inc. | SEIL/B1 |
Affected:
1.00 to 5.62
|
Date Public
2017-04-28 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T13:48:04.413Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.seil.jp/support/security/a01783.html"
},
{
"name": "JVN#86171513",
"tags": [
"third-party-advisory",
"x_refsource_JVN",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN86171513/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "SEIL/x86 Fuji",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "1.70 to 5.62"
}
]
},
{
"product": "SEIL/BPV4",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "5.00 to 5.62"
}
]
},
{
"product": "SEIL/X1",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "1.30 to 5.62"
}
]
},
{
"product": "SEIL/X2",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "1.30 to 5.62"
}
]
},
{
"product": "SEIL/B1",
"vendor": "Internet Initiative Japan Inc.",
"versions": [
{
"status": "affected",
"version": "1.00 to 5.62"
}
]
}
],
"datePublic": "2017-04-28T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "SEIL/x86 Fuji 1.70 to 5.62, SEIL/BPV4 5.00 to 5.62, SEIL/X1 1.30 to 5.62, SEIL/X2 1.30 to 5.62, SEIL/B1 1.00 to 5.62 allows remote attackers to cause a denial of service via specially crafted IPv4 UDP packets."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Denial-of-service (DoS)",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-04-28T15:57:01.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.seil.jp/support/security/a01783.html"
},
{
"name": "JVN#86171513",
"tags": [
"third-party-advisory",
"x_refsource_JVN"
],
"url": "http://jvn.jp/en/jp/JVN86171513/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2017-2153",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "SEIL/x86 Fuji",
"version": {
"version_data": [
{
"version_value": "1.70 to 5.62"
}
]
}
},
{
"product_name": "SEIL/BPV4",
"version": {
"version_data": [
{
"version_value": "5.00 to 5.62"
}
]
}
},
{
"product_name": "SEIL/X1",
"version": {
"version_data": [
{
"version_value": "1.30 to 5.62"
}
]
}
},
{
"product_name": "SEIL/X2",
"version": {
"version_data": [
{
"version_value": "1.30 to 5.62"
}
]
}
},
{
"product_name": "SEIL/B1",
"version": {
"version_data": [
{
"version_value": "1.00 to 5.62"
}
]
}
}
]
},
"vendor_name": "Internet Initiative Japan Inc."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "SEIL/x86 Fuji 1.70 to 5.62, SEIL/BPV4 5.00 to 5.62, SEIL/X1 1.30 to 5.62, SEIL/X2 1.30 to 5.62, SEIL/B1 1.00 to 5.62 allows remote attackers to cause a denial of service via specially crafted IPv4 UDP packets."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Denial-of-service (DoS)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.seil.jp/support/security/a01783.html",
"refsource": "MISC",
"url": "http://www.seil.jp/support/security/a01783.html"
},
{
"name": "JVN#86171513",
"refsource": "JVN",
"url": "http://jvn.jp/en/jp/JVN86171513/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2017-2153",
"datePublished": "2017-04-28T16:00:00.000Z",
"dateReserved": "2016-12-01T00:00:00.000Z",
"dateUpdated": "2024-08-05T13:48:04.413Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
JVNDB-2022-000080
Vulnerability from jvndb - Published: 2022-10-14 13:57 - Updated:2024-06-27 13:40
Severity
Summary
Android App "IIJ SmartKey" vulnerable to information disclosure
Details
Android App "IIJ SmartKey" provided by Internet Initiative Japan Inc. contains an information disclosure vulnerability (CWE-200).
Naoaki Iwakiri reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
| Type | URL | |
|---|---|---|
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-000080.html",
"dc:date": "2024-06-27T13:40+09:00",
"dcterms:issued": "2022-10-14T13:57+09:00",
"dcterms:modified": "2024-06-27T13:40+09:00",
"description": "Android App \"IIJ SmartKey\" provided by Internet Initiative Japan Inc. contains an information disclosure vulnerability (CWE-200).\r\n\r\nNaoaki Iwakiri reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2022/JVNDB-2022-000080.html",
"sec:cpe": {
"#text": "cpe:/a:iij:iij_smartkey",
"@product": "IIJ SmartKey",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "2.6",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:H/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "3.3",
"@severity": "Low",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2022-000080",
"sec:references": [
{
"#text": "https://jvn.jp/en/jp/JVN74534998/index.html",
"@id": "JVN#74534998",
"@source": "JVN"
},
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2022-41986",
"@id": "CVE-2022-41986",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2022-41986",
"@id": "CVE-2022-41986",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-200",
"@title": "Information Exposure(CWE-200)"
}
],
"title": "Android App \"IIJ SmartKey\" vulnerable to information disclosure"
}
JVNDB-2018-000047
Vulnerability from jvndb - Published: 2018-05-11 14:34 - Updated:2019-12-27 18:11
Severity
Summary
IIJ SmartKey App for Android vulnerable to authentication bypass
Details
IIJ SmartKey App for Android contains an authentication bypass vulnerability.
IIJ SmartKey App for Android provided by Internet Initiative Japan Inc. is an application that enables two-step authentication (two-factor authentication) for a website from an Android device. IIJ SmartKey App for Android contains an authentication bypass vulnerability (CWE-287).
Ryo Tateguchi of AndroPlus reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
| Type | URL | |
|---|---|---|
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-000047.html",
"dc:date": "2019-12-27T18:11+09:00",
"dcterms:issued": "2018-05-11T14:34+09:00",
"dcterms:modified": "2019-12-27T18:11+09:00",
"description": "IIJ SmartKey App for Android contains an authentication bypass vulnerability.\r\n\r\nIIJ SmartKey App for Android provided by Internet Initiative Japan Inc. is an application that enables two-step authentication (two-factor authentication) for a website from an Android device. IIJ SmartKey App for Android contains an authentication bypass vulnerability (CWE-287).\r\n\r\nRyo Tateguchi of AndroPlus reported this vulnerability to IPA.\r\n JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-000047.html",
"sec:cpe": {
"#text": "cpe:/a:iij:iij_smartkey",
"@product": "IIJ SmartKey",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "2.6",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:H/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "3.3",
"@severity": "Low",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2018-000047",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN27137002/index.html",
"@id": "JVN#27137002",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0584",
"@id": "CVE-2018-0584",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2018-0584",
"@id": "CVE-2018-0584",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-287",
"@title": "Improper Authentication(CWE-287)"
}
],
"title": "IIJ SmartKey App for Android vulnerable to authentication bypass"
}
JVNDB-2017-000222
Vulnerability from jvndb - Published: 2017-09-11 15:19 - Updated:2018-02-28 14:12
Severity
Summary
SEIL Series routers vulnerable to denial-of-service (DoS)
Details
The IPsec/IKE function in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to a flaw in processing certain packets.
Internet Initiative Japan Inc. reported this vulnerability to IPA to notify users of its solution through JVN. JPCERT/CC and Internet Initiative Japan Inc. coordinated under the Information Security Early Warning Partnership.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000222.html",
"dc:date": "2018-02-28T14:12+09:00",
"dcterms:issued": "2017-09-11T15:19+09:00",
"dcterms:modified": "2018-02-28T14:12+09:00",
"description": "The IPsec/IKE function in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to a flaw in processing certain packets.\r\n\r\nInternet Initiative Japan Inc. reported this vulnerability to IPA to notify users of its solution through JVN. JPCERT/CC and Internet Initiative Japan Inc. coordinated under the Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000222.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fbpv4",
"@product": "SEIL/BPV4",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx",
"@product": "SEIL/X",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx86",
"@product": "SEIL/x86",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
{
"@score": "5.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-000222",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN76692689/index.html",
"@id": "JVN#76692689",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10856",
"@id": "CVE-2017-10856",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-10856",
"@id": "CVE-2017-10856",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "SEIL Series routers vulnerable to denial-of-service (DoS)"
}
JVNDB-2017-000071
Vulnerability from jvndb - Published: 2017-04-19 14:43 - Updated:2017-06-06 14:50
Severity
Summary
SEIL Series routers vulnerable to denial-of-service (DoS)
Details
The DNS forwarder, the PPP Access Concentrator (L2TP) and the Measure(iPerf server) function in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to a flaw in processing certain packets.
Internet Initiative Japan Inc. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. JPCERT/CC and Internet Initiative Japan Inc. coordinated under the Information Security Early Warning Partnership.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000071.html",
"dc:date": "2017-06-06T14:50+09:00",
"dcterms:issued": "2017-04-19T14:43+09:00",
"dcterms:modified": "2017-06-06T14:50+09:00",
"description": "The DNS forwarder, the PPP Access Concentrator (L2TP) and the Measure(iPerf server) function in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to a flaw in processing certain packets.\r\n\r\nInternet Initiative Japan Inc. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. JPCERT/CC and Internet Initiative Japan Inc. coordinated under the Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000071.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fbpv4",
"@product": "SEIL/BPV4",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx1",
"@product": "SEIL/X1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx2",
"@product": "SEIL/X2",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil_x86_fuji",
"@product": "SEIL/x86 Fuji",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": [
{
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
{
"@score": "5.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-000071",
"sec:references": [
{
"#text": "https://jvn.jp/en/jp/JVN86171513/index.html",
"@id": "JVN#86171513",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2153",
"@id": "CVE-2017-2153",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-2153",
"@id": "CVE-2017-2153",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "SEIL Series routers vulnerable to denial-of-service (DoS)"
}
JVNDB-2015-000031
Vulnerability from jvndb - Published: 2015-02-27 15:39 - Updated:2015-03-05 15:42Summary
SEIL Series routers vulnerable to denial-of-service (DoS)
Details
The PPP Access Concentrator (PPPAC) in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to a flaw in processing SSTP packets.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000031.html",
"dc:date": "2015-03-05T15:42+09:00",
"dcterms:issued": "2015-02-27T15:39+09:00",
"dcterms:modified": "2015-03-05T15:42+09:00",
"description": "The PPP Access Concentrator (PPPAC) in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to a flaw in processing SSTP packets.",
"link": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000031.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx1",
"@product": "SEIL/X1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx2",
"@product": "SEIL/X2",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil_x86_fuji",
"@product": "SEIL/x86 Fuji",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2015-000031",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN63949115/index.html",
"@id": "JVN#63949115",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0887",
"@id": "CVE-2015-0887",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0887",
"@id": "CVE-2015-0887",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "SEIL Series routers vulnerable to denial-of-service (DoS)"
}
JVNDB-2014-000136
Vulnerability from jvndb - Published: 2014-12-01 15:24 - Updated:2014-12-09 15:31Summary
SEIL Series routers vulnerable to denial-of-service (DoS)
Details
The PPP Access Concentrator (PPPAC) and the Dial-Up Networking in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to an issue in processing certain packets (CWE-119).
Note that this vulnerability is different from JVN#21907573.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000136.html",
"dc:date": "2014-12-09T15:31+09:00",
"dcterms:issued": "2014-12-01T15:24+09:00",
"dcterms:modified": "2014-12-09T15:31+09:00",
"description": "The PPP Access Concentrator (PPPAC) and the Dial-Up Networking in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to an issue in processing certain packets (CWE-119).\r\n\r\nNote that this vulnerability is different from JVN#21907573.",
"link": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000136.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fneu_2fe_plus",
"@product": "SEIL/neu 2FE Plus",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fturbo",
"@product": "SEIL/Turbo",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx1",
"@product": "SEIL/X1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx2",
"@product": "SEIL/X2",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil_x86_fuji",
"@product": "SEIL/x86 Fuji",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2014-000136",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN04895240/index.html",
"@id": "JVN#04895240",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7256",
"@id": "CVE-2014-7256",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7256",
"@id": "CVE-2014-7256",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-119",
"@title": "Buffer Errors(CWE-119)"
}
],
"title": "SEIL Series routers vulnerable to denial-of-service (DoS)"
}
JVNDB-2014-000135
Vulnerability from jvndb - Published: 2014-12-01 15:18 - Updated:2014-12-09 15:32Summary
SEIL Series routers vulnerable to denial-of-service (DoS)
Details
SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to an issue in processing NTP requests.
Note that this vulnerability is different from JVN#04895240.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000135.html",
"dc:date": "2014-12-09T15:32+09:00",
"dcterms:issued": "2014-12-01T15:18+09:00",
"dcterms:modified": "2014-12-09T15:32+09:00",
"description": "SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to an issue in processing NTP requests.\r\n\r\nNote that this vulnerability is different from JVN#04895240.",
"link": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000135.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx1",
"@product": "SEIL/X1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx2",
"@product": "SEIL/X2",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil_x86_fuji",
"@product": "SEIL/x86 Fuji",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2014-000135",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN21907573/index.html",
"@id": "JVN#21907573",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7255",
"@id": "CVE-2014-7255",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7255",
"@id": "CVE-2014-7255",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "SEIL Series routers vulnerable to denial-of-service (DoS)"
}
JVNDB-2014-000055
Vulnerability from jvndb - Published: 2014-06-13 12:44 - Updated:2014-06-17 16:11Summary
SEIL Series routers vulnerable to denial-of-service (DoS)
Details
The PPP Access Concentrator (PPPAC) in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to an issue in processing certain packets. (CWE-119)
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000055.html",
"dc:date": "2014-06-17T16:11+09:00",
"dcterms:issued": "2014-06-13T12:44+09:00",
"dcterms:modified": "2014-06-17T16:11+09:00",
"description": "The PPP Access Concentrator (PPPAC) in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service (DoS) vulnerability due to an issue in processing certain packets. (CWE-119)",
"link": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000055.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fneu_2fe_plus",
"@product": "SEIL/neu 2FE Plus",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fturbo",
"@product": "SEIL/Turbo",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx1",
"@product": "SEIL/X1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx2",
"@product": "SEIL/X2",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx86",
"@product": "SEIL/x86",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fb1_firmware",
"@product": "SEIL/B1 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fneu_2fe_plus_firmware",
"@product": "SEIL/neu 2FE Plus firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fturbo_firmware",
"@product": "SEIL/Turbo firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx1_firmware",
"@product": "SEIL/X1 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx2_firmware",
"@product": "SEIL/X2 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx86_firmware",
"@product": "SEIL/x86 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2014-000055",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN10724763/index.html",
"@id": "JVN#10724763",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2004",
"@id": "CVE-2014-2004",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2004",
"@id": "CVE-2014-2004",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-119",
"@title": "Buffer Errors(CWE-119)"
}
],
"title": "SEIL Series routers vulnerable to denial-of-service (DoS)"
}
JVNDB-2013-000092
Vulnerability from jvndb - Published: 2013-09-20 14:57 - Updated:2013-09-30 16:46Summary
SEIL Series routers vulnerable to buffer overflow
Details
SEIL Series routers contain a buffer overflow vulnerability.
The PPP Access Concentrator (PPPAC) in SEIL Series routers provided by Internet Initiative Japan Inc. contains a buffer overflow vulnerability in processing L2TP messages.
References
Impacted products
| Vendor | Product | |||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000092.html",
"dc:date": "2013-09-30T16:46+09:00",
"dcterms:issued": "2013-09-20T14:57+09:00",
"dcterms:modified": "2013-09-30T16:46+09:00",
"description": "SEIL Series routers contain a buffer overflow vulnerability.\r\n\r\nThe PPP Access Concentrator (PPPAC) in SEIL Series routers provided by Internet Initiative Japan Inc. contains a buffer overflow vulnerability in processing L2TP messages.",
"link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000092.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fneu_2fe_plus",
"@product": "SEIL/neu 2FE Plus",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fturbo",
"@product": "SEIL/Turbo",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx1",
"@product": "SEIL/X1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx2",
"@product": "SEIL/X2",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx86",
"@product": "SEIL/x86",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fb1_firmware",
"@product": "SEIL/B1 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fneu_2fe_plus_firmware",
"@product": "SEIL/neu 2FE Plus firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fturbo_firmware",
"@product": "SEIL/Turbo firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx1_firmware",
"@product": "SEIL/X1 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx2_firmware",
"@product": "SEIL/X2 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx86_firmware",
"@product": "SEIL/x86 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "7.5",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2013-000092",
"sec:references": [
{
"#text": "https://jvn.jp/en/jp/JVN43152129/",
"@id": "JVN#43152129",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4709",
"@id": "CVE-2013-4709",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=http://support.apple.com/kb/CVE-2013-4709",
"@id": "CVE-2013-4709",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-119",
"@title": "Buffer Errors(CWE-119)"
}
],
"title": "SEIL Series routers vulnerable to buffer overflow"
}
JVNDB-2013-000091
Vulnerability from jvndb - Published: 2013-09-20 14:52 - Updated:2013-10-08 15:36Summary
SEIL Series routers vulnerable in RADIUS authentication
Details
SEIL Series routers contain a vulnerability in RADIUS authentication.
The PPP Access Concentrator (PPPAC) in SEIL Series routers provided by Internet Initiative Japan Inc. contains an issue when generating random numbers used for RADIUS authentication, which may result in the generated random numbers to be easily predicted.
References
Impacted products
| Vendor | Product | |||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000091.html",
"dc:date": "2013-10-08T15:36+09:00",
"dcterms:issued": "2013-09-20T14:52+09:00",
"dcterms:modified": "2013-10-08T15:36+09:00",
"description": "SEIL Series routers contain a vulnerability in RADIUS authentication.\r\n\r\nThe PPP Access Concentrator (PPPAC) in SEIL Series routers provided by Internet Initiative Japan Inc. contains an issue when generating random numbers used for RADIUS authentication, which may result in the generated random numbers to be easily predicted.",
"link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000091.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fneu_2fe_plus",
"@product": "SEIL/neu 2FE Plus",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fturbo",
"@product": "SEIL/Turbo",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx1",
"@product": "SEIL/X1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx2",
"@product": "SEIL/X2",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx86",
"@product": "SEIL/x86",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fb1_firmware",
"@product": "SEIL/B1 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fneu_2fe_plus_firmware",
"@product": "SEIL/neu 2FE Plus firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fturbo_firmware",
"@product": "SEIL/Turbo firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx1_firmware",
"@product": "SEIL/X1 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx2_firmware",
"@product": "SEIL/X2 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx86_firmware",
"@product": "SEIL/x86 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "4.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2013-000091",
"sec:references": [
{
"#text": "https://jvn.jp/en/jp/JVN40079308/",
"@id": "JVN#40079308",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4708",
"@id": "CVE-2013-4708",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4708",
"@id": "CVE-2013-4708",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "SEIL Series routers vulnerable in RADIUS authentication"
}
JVNDB-2012-000059
Vulnerability from jvndb - Published: 2012-06-06 12:39 - Updated:2012-06-06 12:39Summary
SEIL series fail to restrict access permissions
Details
SEIL series contain an issue where access permissions are not restricted.
SEIL series are wireless LAN routers. SEIL series contain an issue where access permissions are not restricted.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000059.html",
"dc:date": "2012-06-06T12:39+09:00",
"dcterms:issued": "2012-06-06T12:39+09:00",
"dcterms:modified": "2012-06-06T12:39+09:00",
"description": "SEIL series contain an issue where access permissions are not restricted.\r\n\r\nSEIL series are wireless LAN routers. SEIL series contain an issue where access permissions are not restricted.",
"link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000059.html",
"sec:cpe": [
{
"#text": "cpe:/o:iij:seil%252fb1_firmware",
"@product": "SEIL/B1 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx1_firmware",
"@product": "SEIL/X1 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx2_firmware",
"@product": "SEIL/X2 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx86_firmware",
"@product": "SEIL/x86 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2012-000059",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN24646833/index.html",
"@id": "JVN#24646833",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2632",
"@id": "CVE-2012-2632",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2632",
"@id": "CVE-2012-2632",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-264",
"@title": "Permissions(CWE-264)"
}
],
"title": "SEIL series fail to restrict access permissions"
}
JVNDB-2011-000014
Vulnerability from jvndb - Published: 2011-02-28 17:17 - Updated:2011-02-28 17:17Summary
SEIL Series routers vulnerable to buffer overflow
Details
SEIL Series routers contain a buffer overflow vulnerability.
The PPP Access Concentrator (PPPAC) contained in SEIL Series routers contain a buffer overflow vulnerability when processing PPPoE packets.
References
| Type | URL | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
Impacted products
| Vendor | Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000014.html",
"dc:date": "2011-02-28T17:17+09:00",
"dcterms:issued": "2011-02-28T17:17+09:00",
"dcterms:modified": "2011-02-28T17:17+09:00",
"description": "SEIL Series routers contain a buffer overflow vulnerability.\r\n\r\nThe PPP Access Concentrator (PPPAC) contained in SEIL Series routers contain a buffer overflow vulnerability when processing PPPoE packets.",
"link": "https://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000014.html",
"sec:cpe": [
{
"#text": "cpe:/o:iij:seil%252fb1_firmware",
"@product": "SEIL/B1 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fneu_2fe_plus_firmware",
"@product": "SEIL/neu 2FE Plus firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fturbo_firmware",
"@product": "SEIL/Turbo firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx1_firmware",
"@product": "SEIL/X1 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx2_firmware",
"@product": "SEIL/X2 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/o:iij:seil%252fx86_firmware",
"@product": "SEIL/x86 firmware",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "8.3",
"@severity": "High",
"@type": "Base",
"@vector": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2011-000014",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN88991166",
"@id": "JVN#88991166",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0454",
"@id": "CVE-2011-0454",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-0454",
"@id": "CVE-2011-0454",
"@source": "NVD"
},
{
"#text": "http://www.ipa.go.jp/security/english/vuln/201102_SEIL_en.html",
"@id": "Security Alert for Vulnerability in SEIL Series Products",
"@source": "IPA SECURITY ALERTS"
},
{
"#text": "http://secunia.com/advisories/43494",
"@id": "SA43494",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/46598",
"@id": "46598",
"@source": "BID"
},
{
"#text": "http://xforce.iss.net/xforce/xfdb/65672",
"@id": "65672",
"@source": "XF"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-119",
"@title": "Buffer Errors(CWE-119)"
}
],
"title": "SEIL Series routers vulnerable to buffer overflow"
}
JVNDB-2010-000032
Vulnerability from jvndb - Published: 2010-08-25 13:54 - Updated:2010-08-25 13:54Summary
SEIL/X Series and SEIL/B1 IPv6 Unicast RPF vulnerability
Details
SEIL/X Series and SEIL/B1 contains a vulnerability in which IPv6 Unicast Reverse Path Forwarding (RPF) does not properly function in strict mode.
SEIL/X Series and SEIL/B1 are routers. SEIL/X Series and SEIL/B1 contains a vulnerability in which IPv6 Unicast Reverse Path Forwarding (RPF) does not properly function in strict mode.
Only IPv6 Unicast RPF in strict mode is vulnerable. According to the developer, IPv6 Unicast RPF in loose mode and IPv4 Unicast RPF are not affected by this vulnerability.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000032.html",
"dc:date": "2010-08-25T13:54+09:00",
"dcterms:issued": "2010-08-25T13:54+09:00",
"dcterms:modified": "2010-08-25T13:54+09:00",
"description": "SEIL/X Series and SEIL/B1 contains a vulnerability in which IPv6 Unicast Reverse Path Forwarding (RPF) does not properly function in strict mode.\r\n\r\nSEIL/X Series and SEIL/B1 are routers. SEIL/X Series and SEIL/B1 contains a vulnerability in which IPv6 Unicast Reverse Path Forwarding (RPF) does not properly function in strict mode.\r\n\r\nOnly IPv6 Unicast RPF in strict mode is vulnerable. According to the developer, IPv6 Unicast RPF in loose mode and IPv4 Unicast RPF are not affected by this vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000032.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx1",
"@product": "SEIL/X1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx2",
"@product": "SEIL/X2",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2010-000032",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN12683004/index.html",
"@id": "JVN#12683004",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2363",
"@id": "CVE-2010-2363",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2363",
"@id": "CVE-2010-2363",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "SEIL/X Series and SEIL/B1 IPv6 Unicast RPF vulnerability"
}
JVNDB-2009-000079
Vulnerability from jvndb - Published: 2009-12-09 19:38 - Updated:2009-12-09 19:38Summary
SEIL/B1 authentication issue
Details
SEIL/B1 contains an issue in the implementation of the PPP Access Concentrator (PPPAC) function, which may allow replay attacks to be performed during the authentication process.
The PPP Access Concentrator (PPPAC) function within SEIL/B1 contains an issue in the CHAP and MS-CHAP-V2 authentication processes, the same challenge value is repeatedly used for each authentication attempt.
References
| Type | URL | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000079.html",
"dc:date": "2009-12-09T19:38+09:00",
"dcterms:issued": "2009-12-09T19:38+09:00",
"dcterms:modified": "2009-12-09T19:38+09:00",
"description": "SEIL/B1 contains an issue in the implementation of the PPP Access Concentrator (PPPAC) function, which may allow replay attacks to be performed during the authentication process.\r\n\r\nThe PPP Access Concentrator (PPPAC) function within SEIL/B1 contains an issue in the CHAP and MS-CHAP-V2 authentication processes, the same challenge value is repeatedly used for each authentication attempt.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000079.html",
"sec:cpe": {
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
"sec:cvss": {
"@score": "2.6",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:H/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-000079",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN49602378/index.html",
"@id": "JVN#49602378",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4409",
"@id": "CVE-2009-4409",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4409",
"@id": "CVE-2009-4409",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/37628",
"@id": "SA37628",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/37293",
"@id": "37293",
"@source": "BID"
},
{
"#text": "http://www.osvdb.org/61118",
"@id": "61118",
"@source": "OSVDB"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-287",
"@title": "Improper Authentication(CWE-287)"
}
],
"title": "SEIL/B1 authentication issue"
}
JVNDB-2009-000069
Vulnerability from jvndb - Published: 2009-11-02 16:42 - Updated:2009-11-02 16:42Summary
SEIL/X Series and SEIL/B1 buffer overflow vulnerability
Details
SEIL/X Series and SEIL/B1 contain a buffer overflow vulnerability.
SEIL/X Series and SEIL/B1 are routers. SEIL/X Series and SEIL/B1 contain an issue in the processing by the URL filtering function, which may lead to a buffer overflow vulnerability.
References
| Type | URL | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000069.html",
"dc:date": "2009-11-02T16:42+09:00",
"dcterms:issued": "2009-11-02T16:42+09:00",
"dcterms:modified": "2009-11-02T16:42+09:00",
"description": "SEIL/X Series and SEIL/B1 contain a buffer overflow vulnerability.\r\n\r\nSEIL/X Series and SEIL/B1 are routers. SEIL/X Series and SEIL/B1 contain an issue in the processing by the URL filtering function, which may lead to a buffer overflow vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000069.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx1",
"@product": "SEIL/X1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx2",
"@product": "SEIL/X2",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "9.3",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-000069",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN06362164/index.html",
"@id": "JVN#06362164",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4292",
"@id": "CVE-2009-4292",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4292",
"@id": "CVE-2009-4292",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/37154",
"@id": "SA37154",
"@source": "SECUNIA"
},
{
"#text": "http://xforce.iss.net/xforce/xfdb/54050",
"@id": "54050",
"@source": "XF"
},
{
"#text": "http://www.vupen.com/english/advisories/2009/3111",
"@id": "VUPEN/ADV-2009-3111",
"@source": "VUPEN"
},
{
"#text": "http://osvdb.org/59361",
"@id": "59361",
"@source": "OSVDB"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-119",
"@title": "Buffer Errors(CWE-119)"
}
],
"title": "SEIL/X Series and SEIL/B1 buffer overflow vulnerability"
}
JVNDB-2009-000070
Vulnerability from jvndb - Published: 2009-11-02 16:42 - Updated:2009-11-02 16:42Summary
SEIL/X Series and SEIL/B1 denial of service vulnerability
Details
SEIL/X Series and SEIL/B1 contain a denial of service (DoS) vulnerability.
SEIL/X Series and SEIL/B1 are routers. SEIL/X Series and SEIL/B1 contain an issue in the processing by the NAT function, which may lead to a denial of service (DoS) vulnerability.
References
| Type | URL | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000070.html",
"dc:date": "2009-11-02T16:42+09:00",
"dcterms:issued": "2009-11-02T16:42+09:00",
"dcterms:modified": "2009-11-02T16:42+09:00",
"description": "SEIL/X Series and SEIL/B1 contain a denial of service (DoS) vulnerability.\r\n\r\nSEIL/X Series and SEIL/B1 are routers. SEIL/X Series and SEIL/B1 contain an issue in the processing by the NAT function, which may lead to a denial of service (DoS) vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000070.html",
"sec:cpe": [
{
"#text": "cpe:/h:iij:seil%2Fb1",
"@product": "SEIL/B1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx1",
"@product": "SEIL/X1",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
},
{
"#text": "cpe:/h:iij:seil%2Fx2",
"@product": "SEIL/X2",
"@vendor": "Internet Initiative Japan Inc.",
"@version": "2.2"
}
],
"sec:cvss": {
"@score": "7.8",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-000070",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN13011682/index.html",
"@id": "JVN#13011682",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4293",
"@id": "CVE-2009-4293",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4293",
"@id": "CVE-2009-4293",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/37154",
"@id": "SA37154",
"@source": "SECUNIA"
},
{
"#text": "http://xforce.iss.net/xforce/xfdb/54050",
"@id": "54050",
"@source": "XF"
},
{
"#text": "http://www.vupen.com/english/advisories/2009/3111",
"@id": "VUPEN/ADV-2009-3111",
"@source": "VUPEN"
},
{
"#text": "http://osvdb.org/59361",
"@id": "59361",
"@source": "OSVDB"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
}
],
"title": "SEIL/X Series and SEIL/B1 denial of service vulnerability"
}