Lucene search

[email protected]CVE-2023-3472

HistorySep 06, 2023 - 5:15 a.m.

CVE-2023-3472

2023-09-0605:15:42

CWE-416

[email protected]

web.nvd.nist.gov

cve-2023-3472

vulnerability

panasonic kw watcher

execute arbitrary code

nvd

8.6 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

23.3%

JSON

Use after free vulnerability in Panasonic KW Watcher versions 1.00 through 2.82 may allow attackers to execute arbitrary code.

Affected configurations

NVD

Node

panasonickw_watcherRange1.00–2.83

CPENameOperatorVersion
panasonic:kw_watcherpanasonic kw watcherlt2.83

CPE	Name	Operator	Version
panasonic:kw_watcher	panasonic kw watcher	lt	2.83

CNA Affected

[
  {
    "collectionURL": "https://www3.panasonic.biz/ac/e/fasys/software_info/eco/tol_kwwatcher.jsp",
    "defaultStatus": "unaffected",
    "platforms": [
      "Windows"
    ],
    "product": "KW Watcher on Windows",
    "vendor": "Panasonic",
    "versions": [
      {
        "lessThanOrEqual": "2.82",
        "status": "affected",
        "version": "1.00",
        "versionType": "custom"
      }
    ]
  }
]

References

www3.panasonic.biz/ac/e/fasys/software_info/eco/kwwatcher_versioninfo.jsp

www3.panasonic.biz/ac/j/fasys/software_info/eco/tol_kwwatcher.jsp

8.6 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

23.3%

JSON

Related for CVE-2023-3472

prion1 nvd1 cvelist1