CVE-2023-3741

{"id": "CVE-2023-3741", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2023-11-30T01:15:07.187", "references": [{"url": "https://https://jpn.nec.com/security-info/secinfo/nv23-011_en.html", "tags": ["Broken Link"], "source": "psirt-info@cyber.jp.nec.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-78"}]}, {"type": "Secondary", "source": "psirt-info@cyber.jp.nec.com", "description": [{"lang": "en", "value": "CWE-78"}]}], "descriptions": [{"lang": "en", "value": "An OS Command injection vulnerability in NEC Platforms DT900 and DT900S Series all versions allows an attacker to execute any command on the device.\n\n"}, {"lang": "es", "value": "Una vulnerabilidad de inyecci\u00f3n de comandos del sistema operativo en NEC Platforms DT900 and DT900S Series, todas las versiones, permite a un atacante ejecutar cualquier comando en el dispositivo."}], "lastModified": "2023-12-05T01:52:00.197", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-6dgs-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3D34FA4D-DBF4-4A41-9E11-74B2BB3E1824"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-6dgs-1\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E2F866A1-FE6B-4C03-8738-1201C2E6848F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-32lcgs-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69FECFD5-0ACB-41B0-9AD8-1EA6EB0D1205"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-32lcgs-1\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "559BCF01-8716-4F42-8FA2-95DB68744E91"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-32tcgs-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1F6B893-3360-42B3-8779-B4F166BEBADC"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-32tcgs-1\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "977F829C-51E0-4408-86EB-4A5F4F2AF02B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-6d-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC34950E-33C6-4CDF-94F9-CB6D7F7D3953"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-6d-1\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5D81DD6F-5026-4F53-BEA7-F66249EAFC55"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-12d-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15FA9B5C-BF54-46BA-97CA-42D4A071B0C8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-12d-1\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7DCF0DF4-594A-46C5-A3DC-BB38856D6A52"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-8lcx-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "37E9D966-2B63-4DFF-BA57-0B1A0556BCC4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-8lcx-1\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "083510DD-C5B1-44B1-9CB7-D5A42FBAAC9A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-8tcgx-1\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C3AE0212-F703-40AE-A20F-5987DFE88363"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-8tcgx-1\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0E484F75-1CEB-43EE-B56A-8449562F1D96"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-6dgs-1a\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10375D05-E64E-4BF9-8A2C-46AE94B13A1A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-6dgs-1a\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8D73BE74-0868-462E-B8C7-4A1540EDF103"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-32lcgs-1a\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BFADF7DF-3198-4249-BF53-7CAF692E033F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-32lcgs-1a\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DE7538E9-EA61-4494-9958-475097C1A655"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-32tcgs-1a\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EAF30F9E-0CAE-4E3D-94D0-5131D419E7A5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-32tcgs-1a\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0F18ADDA-F8E7-4502-8413-89335DAD271A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-6dgs-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F5F0F713-C37A-422B-BD01-99E91F35CA2F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-6dgs-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BCE2B688-B9DA-405C-B4CC-0A8CC3CB0BB6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-32lcgs-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC8ABE27-1577-4D4E-90C4-D7EDB7EBFC6A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-32lcgs-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "75A896BD-D903-455B-B188-B8CDBE8AAFFC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-32tcgs-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E699313-5667-4261-B744-930B9E1B8593"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-32tcgs-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D173DF06-51BA-49A2-A708-BD3050BA52D2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-6d-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B103B15-D567-484E-BA7C-56B7461213D0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-6d-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3018EA32-2B4A-46ED-9573-FF40233B1F65"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-12d-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D18351C0-30C7-44A3-B958-45398A2B6494"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-12d-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EDE89E1E-EEF5-46C4-8E09-11C212481BFD"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-6dg-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D7A06E0-238E-421E-AA0C-A6213F20250E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-6dg-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "749CF6D9-E0BC-40E0-960F-A8BE63F9C644"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-12dg-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9EBC02EF-7A5E-4145-AB39-765A0C65F37C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-12dg-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A94570B8-1E9E-4D95-8CE0-7D03A9C90BDD"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-8lcx-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34A49F73-9178-4F55-9CF8-043CA50F82C5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-8lcx-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F8C0DD87-4B3B-45CF-BBFF-37287E9B3813"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-8lcg-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EE144BC-8DCC-4036-ABD7-B68F306839B5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-8lcg-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9DD939D2-E4CF-4EC9-971A-55A240A59BCA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-32lcg-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D077F3E8-87E3-4613-A980-9111B88B48B0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-32lcg-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4DF0D11E-592C-4514-9F41-56C96C57E7F7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-8tcgx-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "31A24B52-4C28-4ABC-AAAA-1FC0CAE732DF"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-8tcgx-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0D39AA9A-FA93-4445-A7B1-F956FE7079CC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nec:itk-32tcg-1p\\(bk\\)tel_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "632954BD-9AE3-446B-A4CB-99495700867F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nec:itk-32tcg-1p\\(bk\\)tel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7D1447B2-28E9-400B-86AF-10606CEC3543"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt-info@cyber.jp.nec.com"}