CVE-2023-39222

🗓️ 03 Oct 2023 00:12:04Reported by jpcertType

OS command injection vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to execute arbitrary OS commands

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2023-39222	3 Oct 202307:41	–	circl
CNNVD	Furuno wireless LAN access point devices Operating System Command Injection Vulnerability	2 Oct 202300:00	–	cnnvd
Cvelist	CVE-2023-39222	3 Oct 202300:12	–	cvelist
EUVD	EUVD-2023-42956	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	Multiple vulnerabilities in multiple FURUNO SYSTEMS wireless LAN access point devices in ST(Standalone) mode	3 Oct 202305:26	–	jvn
NVD	CVE-2023-39222	3 Oct 202301:15	–	nvd
OSV	CVE-2023-39222	3 Oct 202301:15	–	osv
Prion	Command injection	3 Oct 202301:15	–	prion
Positive Technologies	PT-2023-26840 · Furuno Systems · Acera 1310 +13	2 Oct 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-39222	23 May 202505:43	–	redhatcve

NVD

Vulners

Node

furunosystems acera_1310_firmwareRange≤01.26

AND

furunosystems acera_1310Match-

Node

furunosystems acera_1320_firmwareRange≤01.26

AND

furunosystems acera_1320Match-

Node

furunosystems acera_1210_firmwareRange≤02.36

AND

furunosystems acera_1210Match-

Node

furunosystems acera_1150i_firmwareRange≤01.35

AND

furunosystems acera_1150iMatch-

Node

furunosystems acera_1150w_firmwareRange≤01.35

AND

furunosystems acera_1150wMatch-

Node

furunosystems acera_1110_firmwareRange≤01.76

AND

furunosystems acera_1110Match-

Node

furunosystems acera_1020_firmwareRange≤01.86

AND

furunosystems acera_1020Match-

Node

furunosystems acera_1010_firmwareRange≤01.86

AND

furunosystems acera_1010Match-

Node

furunosystems acera_950_firmwareRange≤01.60

AND

furunosystems acera_950Match-

Node

furunosystems acera_850f_firmwareRange≤01.60

AND

furunosystems acera_850fMatch-

Node

furunosystems acera_900_firmwareRange≤02.54

AND

furunosystems acera_900Match-

Node

furunosystems acera_850m_firmwareRange≤02.06

AND

furunosystems acera_850mMatch-

Node

furunosystems acera_810_firmwareRange≤03.74

AND

furunosystems acera_810Match-

Node

furunosystems acera_800st_firmwareRange≤07.35

AND

furunosystems acera_800stMatch-

[
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 1320",
    "versions": [
      {
        "version": "firmware ver.01.26 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 1310",
    "versions": [
      {
        "version": "firmware ver.01.26 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 1210",
    "versions": [
      {
        "version": "firmware ver.02.36 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 1150i",
    "versions": [
      {
        "version": "firmware ver.01.35 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 1150w",
    "versions": [
      {
        "version": "firmware ver.01.35 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 1110",
    "versions": [
      {
        "version": "firmware ver.01.76 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 1020",
    "versions": [
      {
        "version": "firmware ver.01.86 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 1010",
    "versions": [
      {
        "version": "firmware ver.01.86 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 950",
    "versions": [
      {
        "version": "firmware ver.01.60 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 850F",
    "versions": [
      {
        "version": "firmware ver.01.60 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 900",
    "versions": [
      {
        "version": "firmware ver.02.54 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 850M",
    "versions": [
      {
        "version": "firmware ver.02.06 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 810",
    "versions": [
      {
        "version": "firmware ver.03.74 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "FURUNO SYSTEMS Co.,Ltd.",
    "product": "ACERA 800ST",
    "versions": [
      {
        "version": "firmware ver.07.35 and earlier",
        "status": "affected"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/vu/JVNVU94497038/
furunosystems	www.furunosystems.co.jp/news/info/vulner20231002.html

21 Nov 2024 08:14Current

8.7High risk

Vulners AI Score8.7

CVSS 3.18.8

EPSS0.008

SSVC

CWE-78

os command injection vulnerability furuno systems wireless lan access point acera nvd cve-2023-39222